CVE-2009-4216

Publication date

2009-12-07 17:00:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in funzioni/lib/menulast.php in klinza professional cms 5.0.1 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the LANG parameter.