Golabi CMS 'index_logged.php' Remote File Include Vulnerability Network Vulnerability

Summary

Golabi CMS is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue can allow an attacker to compromise the application and the underlying computer other attacks are also possible.

Solution

Upgrade to a newer version available at http://golabicms.sourceforge.net/

Severity

Classification

CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

ATutor password reminder SQL injection
ASP Inline Corporate Calendar SQL injection
4Images <= 1.7.1 Directory Traversal Vulnerability
Adobe ColdFusion Multiple Vulnerabilities-01 May-2014
Atlassian JIRA Privilege Escalation and Multiple Cross Site Scripting Vulnerabilities

Take action and discover your vulnerabilities