CMS Made Simple Forums

Content management as it is meant to be
https://forum.cmsmadesimple.org/

CMS Made Simple 'cms_language' Cookie Parameter Directory Traversal Vulnerabilit

https://forum.cmsmadesimple.org/viewtopic.php?t=28204

Page 1 of 1

CMS Made Simple 'cms_language' Cookie Parameter Directory Traversal Vulnerabilit

Posted: Sun Nov 30, 2008 5:28 am
by johnbmcdonald
Just ran across this, thought you'd like to know:

http://www.securityfocus.com/bid/32535

John

Re: CMS Made Simple 'cms_language' Cookie Parameter Directory Traversal Vulnerabilit

Posted: Sun Nov 30, 2008 12:21 pm
by RonnyK
Thanks John,

will pass it on for examination....

Ronny

Re: CMS Made Simple 'cms_language' Cookie Parameter Directory Traversal Vulnerabilit

Posted: Sun Nov 30, 2008 12:48 pm
by Dee
Has already been picked up by calguy.

Replace admin/lang.php with the latest revision to fix.

Regards,
D

Re: CMS Made Simple 'cms_language' Cookie Parameter Directory Traversal Vulnerabilit

Posted: Mon Dec 01, 2008 4:16 pm
by johnbmcdonald
Thanks!  :)

Re: CMS Made Simple 'cms_language' Cookie Parameter Directory Traversal Vulnerabilit

Posted: Tue Dec 02, 2008 10:25 pm
by michi1979
Hello,
is this fix also included in 1.5 ?

Greetings,
Michael

Re: CMS Made Simple 'cms_language' Cookie Parameter Directory Traversal Vulnerabilit

Posted: Tue Dec 02, 2008 11:26 pm
by alby
michi1979 wrote: is this fix also included in 1.5 ?
yes

Alby
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited