Description
Directory traversal vulnerability in editor_registry.php in XOOPS 2.2.3 allows remote attackers to read or include arbitrary local files via a .. (dot dot) in the xoopsConfig[language] parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin Another WordPress Classifieds Multiple Vulnerabilities (2.2.1)
MySQL CVE-2012-3167 Vulnerability (CVE-2012-3167)
WordPress Plugin Gallery-Photo Albums-Portfolio Cross-Site Scripting (1.3.47)
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1000192)