Xoops - Uploader CVE

Filtered by vendor Xoops Subscribe

Filtered by product Uploader

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2008-7178	1 Xoops	2 Uploader, Xoops	2025-04-09	7.5 HIGH	N/A
Directory traversal vulnerability in Uploader module 1.1 for XOOPS allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter in a downloadfile action to index.php.

Vulnerabilities (CVE)