2025-12-26 00:00:00
mitre
PUBLISHED
A path traversal vulnerability in Croogo CMS 4.0.7 allows remote attackers to read arbitrary files via a specially crafted path in the edit-file parameter.