RuubikCMS 'f' Parameter Information Disclosure Vulnerability Network Vulnerability

Summary

RuubikCMS is prone to an information-disclosure vulnerability because it fails to sufficiently validate user-supplied data. An attacker can exploit this issue to download local files in the context of the webserver process. This may allow the attacker to obtain sensitive information other attacks are also possible. RuubikCMS 1.1.0 is vulnerable other versions may also be affected.

References

http://www.ruubikcms.com
http://www.securityfocus.com/bid/50165

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

APC PowerChute Network Shutdown HTTP Response Splitting Vulnerability
Apache mod_proxy_ftp Wildcard Characters XSS Vulnerability
Afian 'includer.php' Directory Traversal Vulnerability
Apache Web Server Linefeed Memory Allocation Denial Of Service Vulnerability
Alt-N WebAdmin Remote Source Code Information Disclosure Vulnerability

Take action and discover your vulnerabilities