Directory Traversal Vulnerability in Chyrp 2.0 by Chyrp
CVE-2011-2780

Currently unrated

Key Information:

Vendor

Chyrp

Status
Chyrp
Vendor
CVE Published:
19 July 2011

What is CVE-2011-2780?

A directory traversal vulnerability exists in Chyrp 2.0 and earlier versions due to insufficient input validation in the includes/lib/gz.php file. This flaw allows remote attackers to exploit the file parameter to access arbitrary files on the server by using a '../' sequence. This vulnerability poses a significant risk to the confidentiality of sensitive information stored within the filesystem, highlighting the need for proper security controls in content management systems.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://securityreason.com/securityalert/8312
third-party-advisoryx_refsource_SREASON
http://osvdb.org/73891
vdb-entryx_refsource_OSVDB
http://www.justanotherhacker.com/advisories/JAHx113.txt
x_refsource_MISC

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.