VYPR

Xinha plugin

by Precurio

CVEs (1)

  • CVE-2016-10759CriMay 24, 2019
    risk 0.64cvss 9.8epss 0.04

    The Xinha plugin in Precurio 2.1 allows Directory Traversal, with resultant arbitrary code execution, via ExtendedFileManager/Classes/ExtendedFileManager.php because ExtendedFileManager can be used to rename the .htaccess file that blocks .php uploads.