2 matches found
CVE-2018-1000504
Redirection version 2.7.3 contains a ACE via file inclusion vulnerability in Pass-through mode that can result in allows admins to execute any PHP file in the filesystem. This attack appear to be exploitable via Attacker must be have access to an admin account on the target site. This vulnerabili...
CVE-2018-1000504
CVE-2018-1000504 affects Redirection version 2.7.3 in Pass-through mode, exposing an ACE file-inclusion vulnerability that can allow an admin to execute arbitrary PHP files on the filesystem. The issue requires admin access to the target site and is reported as fixed in version 2.8. The connected...