CVE-2010-3468

Mura CMS <5.1.498-5.2.2809 & Sava CMS 5-5.2 - Path Traversal

Title source: llm

Description

Directory traversal vulnerability in fileManager.cfc in Mura CMS 5.1 before 5.1.498 and 5.2 before 5.2.2809, and Sava CMS 5 through 5.2, allows remote attackers to read arbitrary files via a .. (dot dot) in the FILEID parameter to the default URI under tasks/render/file/.

Exploits (1)

exploitdb WRITEUP VERIFIED

by mr_me · textwebappscfm

https://www.exploit-db.com/exploits/15120

View Code ZIP pw:eip

References (5)

Core 5

Core References

Exploit x_refsource_misc

http://www.stratsec.net/Research/Advisories/Blue-River-Mura-CMS-Directory-Traversal-%28SS-2010-0

Patch, Vendor Advisory x_refsource_confirm

http://www.getmura.com/index.cfm/blog/critical-security-patch/

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/43499

Exploit exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/15120

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/41591

Scores

EPSS 0.0329

EPSS Percentile 87.3%

Details

CWE

CWE-22

Status published

Products (5)

blueriver/mura_cms 5.1

blueriver/mura_cms 5.2

blueriver/sava_cms 5.0

blueriver/sava_cms 5.0.122

blueriver/sava_cms 5.2

Published Sep 29, 2010

Tracked Since Feb 18, 2026