Security Advisory

CVE-2012-2227

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-08-26 18:00:00

Last updated 2024-08-06 19:26:09

Assigner mitre

State PUBLISHED

Description

Directory traversal vulnerability in update/index.php in PluXml before 5.1.6 allows remote attackers to include and execute arbitrary local files via a ..%2F (encoded dot dot slash) in the default_lang parameter.

← Browse all CVEs View on cve.org ↗