CVE-2018-6880

Publication date

2018-02-12 03:00:00

Family

mitre

State

PUBLISHED

Description

EmpireCMS 6.6 through 7.2 allows remote attackers to discover the full path via an array value for a parameter to class/connect.php.