Directory Traversal Vulnerabilities in Wangkongbao CNS-1000 and 1100's src/acloglogin.php

Directory Traversal Vulnerabilities in Wangkongbao CNS-1000 and 1100's src/acloglogin.php

CVE-2012-4031 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Multiple directory traversal vulnerabilities in src/acloglogin.php in Wangkongbao CNS-1000 and 1100 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) lang or (2) langid cookie to port 85.

Learn more about our Web Application Penetration Testing UK.