CVE-2014-3975

Publication date

2014-06-05 17:00:00

Family

mitre

State

PUBLISHED

Description

Absolute path traversal vulnerability in filemanager.php in AuraCMS 3.0 allows remote attackers to list a directory via a full pathname in the viewdir parameter.