CVE-2009-2223

CVE-2009-2223 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Directory traversal vulnerability in locms/smarty.php in LightOpenCMS 0.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the cwd parameter. NOTE: remote file inclusion attacks may be possible.

Learn more about our Cms Pen Testing.