CVE-2018-25393 | Navigatecms Navigate CMS 2.8.5 Configuration File navigate_download.php ID path traversal (Exploit 45615 / EDB-45615)

A vulnerability was found in Navigatecms Navigate CMS 2.8.5. It has been classified as critical. Affected is an unknown function of the file navigate_download.php of the component Configuration File Handler. This manipulation of the argument ID causes path traversal.

This vulnerability is tracked as CVE-2018-25393. The attack is possible to be carried out remotely. Moreover, an exploit is present.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More