2 matches found
CVE-2017-2163
Directory traversal vulnerability in SOY CMS Ver.1.8.1 to Ver.1.8.12 allows authenticated attackers to read arbitrary files via shopid...
CVE-2017-2163
CVE-2017-2163 affects SOY CMS versions 1.8.1–1.8.12. A directory traversal flaw arises from flawed processing of the shop_id parameter, allowing authenticated attackers to read arbitrary files on the server and potentially execute arbitrary PHP code. Remediation is to update to the latest SOY CMS...