CVE-2008-4773

Directory traversal vulnerability in main/main.php in QuestCMS allows remote attackers to read arbitrary local files via a .. (dot dot) in the theme parameter.

Link	Resource
http://www.securityfocus.com/bid/31945	Exploit
http://securityreason.com/securityalert/4523
https://exchange.xforce.ibmcloud.com/vulnerabilities/46151
https://www.exploit-db.com/exploits/6853

Configuration 1

cpe:2.3:a:questwork:questcms:*:*:*:*:*:*:*:*

---

Published : 2008-10-28 07:46

Updated : 2017-09-29 01:32

---

NVD link : CVE-2008-4773

Mitre link : CVE-2008-4773

No products.

CWE-22