← back
CVE-2005-2686

CVE-2005-2686

EPSS 1.7%
Directory traversal vulnerability in SaveWebPortal 3.4 allows remote attackers to include arbitrary files and execute arbitrary local PHP programs via ".." sequences in the (1) SITE_Path parameter to menu_dx.php or (2) CONTENTS_Dir parameter to menu_sx.php.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://rgod.altervista.org/save_yourself_from_savewebportal34.htmlhttp://secunia.com/advisories/16522