CVE-2014-9574 Information

Feb 14, 2021 cve

Description

Directory traversal vulnerability in install.php in FluxBB before 1.5.8 allows remote attackers to include and execute arbitrary local install.php files via a .. (dot dot) in the install_lang parameter.

Reference

https://exchange.xforce.ibmcloud.com/vulnerabilities/100506 https://fluxbb.org/forums/viewtopic.php?id=8203 https://www.htbridge.com/advisory/HTB23246

Share on: