3 matches found
CVE-2014-8676
Directory traversal vulnerability in the filegetcontents function in SOPlanning 1.32 and earlier allows remote attackers to determine the existence of arbitrary files via a .. dot dot in a URL path parameter...
CVE-2014-8676
SOPlanning 1.32 and earlier is affected by a Directory Traversal (CVE-2014-8676) in the file_get_contents call, enabling remote attackers to determine the existence of arbitrary files via a .. in the URL path parameter. Connected sources specify vulnerable version scope (1.32 and earlier) and des...
Simple Online Planning Tool 1.3.2 XSS / SQL Injection / Traversal
SOPlanning - Simple Online Planning Tool multiple vulnerabilities CVEs: CVE-2014-8673, CVE-2014-8674, CVE-2014-8675, CVE-2014-8676, CVE-2014-8677 Vendor: http://www.soplanning.org/ Product: SOPlanning - Simple Online Planning Version affected: 1.32 and prior Product description: SO Planning is an...