Critical severity9.8NVD Advisory· Published Jul 17, 2017· Updated Jun 17, 2026
CVE-2017-1000002
CVE-2017-1000002
Description
ATutor versions 2.2.1 and earlier are vulnerable to a directory traversal and file extension check bypass in the Course component resulting in code execution. ATutor versions 2.2.1 and earlier are vulnerable to a directory traversal vulnerability in the Course Icon component resulting in information disclosure.
Affected products
2Patches
Vulnerability mechanics
References
3- www.atutor.ca/atutor/mantis/changelog_page.phpnvdVendor Advisory
- www.securityfocus.com/bid/99599nvdThird Party AdvisoryVDB Entry
- www.atutor.ca/atutor/mantis/view.phpnvdPermissions Required
News mentions
0No linked articles in our index yet.