Path Traversal Vulnerability in NUUO CMS

Path Traversal Vulnerability in NUUO CMS

CVE-2018-17934 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

NUUO CMS All versions 3.3 and prior the application allows external input to construct a pathname that is able to be resolved outside the intended directory. This could allow an attacker to impersonate a legitimate user, obtain restricted information, or execute arbitrary code.

Learn more about our Cms Pen Testing.