Home > Access Bypass, Content Management, File Inclusion > CMSQLite Arbitrary File Upload and Security Bypass

CMSQLite Arbitrary File Upload and Security Bypass

August 25th, 2010

Application: CMSQLite
Affected Version: version 1.3.1 and other versions.
Vendor’s URL: CMSQLite
Bug Type: File Upload and Security Bypass
Risk Level: Critical

Solution:
Restrict access to the “admin” directory (e.g. via a “.htaccess” file).

Access Bypass, Content Management, File Inclusion

Comments are closed.