virus logo FortiClient Vulnerability

PHP CVE-2017-9067 Path Traversal Vulnerability

description-logoDescription

In MODX Revolution before 2.5.7, when PHP 5.3.3 is used, an attacker is able to include and execute arbitrary files on the web server due to insufficient validation of the action parameter to setup/index.php, aka directory traversal.

affected-products-logoAffected Applications

PHP

CVE References

CVE-2017-9067

Other References

https://nvd.nist.gov/vuln/detail/CVE-2017-9067
ID 61986
Created Jan 09, 2020
Description
Updated		 Dec 19, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor PHP
Patch manual
Application PHP