4 matches found
CVE-2010-3468
Directory traversal vulnerability in fileManager.cfc in Mura CMS 5.1 before 5.1.498 and 5.2 before 5.2.2809, and Sava CMS 5 through 5.2, allows remote attackers to read arbitrary files via a .. dot dot in the FILEID parameter to the default URI under tasks/render/file/...
CVE-2010-3468
Directory traversal vulnerability in fileManager.cfc in Mura CMS 5.1 before 5.1.498 and 5.2 before 5.2.2809, and Sava CMS 5 through 5.2, allows remote attackers to read arbitrary files via a .. dot dot in the FILEID parameter to the default URI under tasks/render/file/...
CVE-2010-3468
CVE-2010-3468 describes a directory traversal in Mura CMS (fileManager.cfc) that lets an attacker read arbitrary server files by manipulating the FILEID parameter in the default URI under tasks/render/file/. Affected are Mura CMS 5.1 prior to 5.1.498, 5.2 prior to 5.2.2809, and Sava CMS 5.x up to...
CVE-2010-3468
creationtimestamp| type| source ---|---|--- 2010-09-26 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/15120...