CVE-2008-5570

Directory traversal vulnerability in index.php in PHP Multiple Newsletters 2.7, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter.
Configurations

Configuration 1

cpe:2.3:a:php_multiple_newsletters:php_multiple_newsletters:2.7:*:*:*:*:*:*:*

Information

Published : 2008-12-15 06:00

Updated : 2017-09-29 01:32


NVD link : CVE-2008-5570

Mitre link : CVE-2008-5570

Products Affected
No products.
CWE