|Category:||Web application abuses|
|Title:||e-Vision CMS Multiple Local File Include Vulnerabilities|
|Summary:||Determine if e-Vision CMS is vulnerable to multiple Local File Include|
e-Vision CMS is prone to multiple local file-include vulnerabilities
because it fails to properly sanitize user-supplied input.
An attacker can exploit these vulnerabilities using
directory-traversal strings to view local files and execute local
scripts within the context of the webserver process. A successful
attack can allow the attacker to obtain sensitive information or
gain unauthorized access to an affected computer in the context of
the vulnerable server.
e-Vision CMS 2.0.2 is vulnerable
other versions may also be affected.
BugTraq ID: 32180|
Common Vulnerability Exposure (CVE) ID: CVE-2008-6551
XForce ISS Database: evisioncms-module-file-include(46457)
|Copyright||This script is Copyright (C) 2009 Greenbone Networks GmbH|
|This is only one of 40037 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.