PHP.FILE.Parameter.Remote.File.Disclosure

description-logoDescription

This indicates a possible exploit of a remote file disclosure vulnerability in JulmaCMS.
An attacker could send a specially-crafted URL request to the file.php script, containing "dot dot" sequences (/../) in the file parameter, to view arbitrary files on the system.

affected-products-logoAffected Products

JulmaCMS 1.4

Impact logoImpact

Directory traversal.

recomended-action-logoRecommended Actions

Upgrade to the latest version, available from the Web site:
http://julmajanne.com/.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)