3 matches found
CVE-2009-4581
Directory traversal vulnerability in modules/admincp.php in RoseOnlineCMS 3 B1 and earlier, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the admin parameter...
CVE-2009-4581
Directory traversal vulnerability in modules/admincp.php in RoseOnlineCMS 3 B1 and earlier, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the admin parameter...
CVE-2009-4581
Affected software: RoseOnlineCMS (versions 3 B1 and earlier). Vulnerable component: modules/admincp.php; issue arises when magic_quotes_gpc is disabled. What’s vulnerable: directory traversal via the admin parameter, allowing remote attackers to include and execute arbitrary local files. Impact: ...