CVE-2013-1806

Name of the Vulnerable Software and Affected Versions PHP-Fusion versions prior to 7.02.06

Description The issue allows remote authenticated users to include and execute arbitrary files via a .. (dot dot) in the user theme parameter to "maincore.php". Additionally, remote authenticated administrators can delete arbitrary files via the enable parameter to "administration/user fields.php" or the file parameter to "administration/db backup.php".

Recommendations For versions prior to 7.02.06, update to version 7.02.06 or later to resolve the issue. As a temporary workaround, consider restricting access to the maincore.php, administration/user fields.php, and administration/db backup.php files, and avoid using the user theme, enable, and file parameters in these files until the issue is resolved.