mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-28 15:31:27 +02:00
0xMarcio
731 B
731 B
CVE-2009-4154
Description
Directory traversal vulnerability in includes/feedcreator.class.php in Elxis CMS allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.
POC
Reference
- http://packetstormsecurity.org/0911-exploits/elxiscms-disclose.txt
- http://packetstormsecurity.org/0911-exploits/elxiscms-disclose.txt
Github
No PoCs found on GitHub currently.