CVE-2009-4435

Publication date

2009-12-28 18:27:00

Family

mitre

State

PUBLISHED

Description

Multiple directory traversal vulnerabilities in F3Site 2009 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the GLOBALS[nlang] parameter to (1) mod/poll.php and (2) mod/new.php.