Path Traversal Vulnerability in NUUO CMS
CVE-2018-17934 · HIGH Severity
AV:N/AC:L/AU:N/C:P/I:P/A:P
NUUO CMS All versions 3.3 and prior the application allows external input to construct a pathname that is able to be resolved outside the intended directory. This could allow an attacker to impersonate a legitimate user, obtain restricted information, or execute arbitrary code.
Learn more about our Cms Pen Testing.