Description
Directory traversal vulnerability in install.php in FluxBB before 1.5.8 allows remote attackers to include and execute arbitrary local install.php files via a .. (dot dot) in the install_lang parameter.
Remediation
References
Related Vulnerabilities
MySQL CVE-2018-3071 Vulnerability (CVE-2018-3071)
WordPress Plugin Ocean Extra Security Bypass (1.5.8)
WordPress Plugin Quick Featured Images Cross-Site Scripting (12.3.5)
Plone CMS Resource Management Errors Vulnerability (CVE-2012-5496)
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-36129)