CVE-2010-1951

Publication date

2010-05-18 19:00:00

Family

mitre

State

PUBLISHED

Description

Multiple directory traversal vulnerabilities in 60cycleCMS allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the DOCUMENT_ROOT parameter to (1) news.php, (2) submitComment.php, and (3) sqlConnect.php.