Security Advisory

CVE-2007-1455

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-03-14 18:00:00

Last updated 2024-08-07 12:59:08

Assigner mitre

State PUBLISHED

Description

Multiple absolute path traversal vulnerabilities in Fantastico, as used with cPanel 10.x, allow remote authenticated users to include and execute arbitrary local files via (1) the userlanguage parameter to includes/load_language.php or (2) the fantasticopath parameter to includes/mysqlconfig.php and certain other files.

← Browse all CVEs View on cve.org ↗