CVE-2010-5278
MODx Revolution 2.0.2-pl (and possibly earlier) is vulnerable to a Local File Inclusion via the class_key parameter in manager/controllers/default/resource/tvs.php when magic_quotes_gpc is disabled. The vulnerability allows an attacker to read arbitrary server files by使用 a directory traversal seq...