Directory traversal vulnerability in class2.php in e107 0.7.5 and earlier allows remote attackers to read and execute PHP code in arbitrary files via .. sequences in the e107language_e107cookie cookie to gsitemap.php.
Name | Vendor | Start Version | End Version |
---|---|---|---|
E107 | E107 | 0.7.5 (including) | 0.7.5 (including) |