CVE-2008-0459
CVE-2008-0459 affects Liquid-Silver CMS 0.35. A directory traversal flaw in update/index.php allows remote attackers to include and execute arbitrary local files via .. in the update parameter when magic_quotes_gpc is disabled. Root cause: inadequate input sanitization leading to local file inclu...