retitle 447135 CVE-2007-5491 CVE-2007-5492 code injection 
and directory traversal after user interaction
thanks

There is just another CVE for sitebar related to this:
CVE-2007-5491:
| Directory traversal vulnerability in the translation module 
| (translator.php) in SiteBar 3.3.8 allows remote 
| authenticated users to chmod arbitrary files to 0777 via 
| ".." sequences in the lang parameter.

Kind regards
Nico
-- 
Nico Golde - http://ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.

Attachment: pgpQtWvFA1pQu.pgp
Description: PGP signature

Reply via email to