Vulnerabilities > Contao

DATE	CVE	VULNERABILITY TITLE	RISK
2017-07-21	CVE-2017-10993	Path Traversal vulnerability in Contao CMS Contao before 3.5.28 and 4.x before 4.4.1 allows remote attackers to include and execute arbitrary local PHP files via a crafted parameter in a URL, aka Directory Traversal. network low complexity contao CWE-22	8.8
2017-05-26	CVE-2015-0269	Path Traversal vulnerability in Contao CMS Directory traversal vulnerability in Contao before 3.2.19, and 3.4.x before 3.4.4 allows remote authenticated "back end" users to view files outside their file mounts or the document root via unspecified vectors. network low complexity contao CWE-22	4.3

Vulnerabilities > Contao {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Contao"}]}