VULHUB ™

AJ-Fork is reported prone to an insecure default file permissions vulnerability. This issue arises due to a configuration error and may allow an attacker to read and write to arbitrary Web accessible files. AJ-Fork version 167 is reported prone to this vulnerability. It is likely that other versions are affected as well. It is reported that AJ-Fork is based on CuteNews by Cutephp. Due to code similarities all versions of CuteNews are considered vulnerable to this issue as well.

AJ-Fork is reported prone to an insecure default file permissions vulnerability. This issue arises due to a configuration error and may allow an attacker to read and write to arbitrary Web accessible files. AJ-Fork version 167 is reported prone to this vulnerability. It is likely that other versions are affected as well. It is reported that AJ-Fork is based on CuteNews by Cutephp. Due to code similarities all versions of CuteNews are considered vulnerable to this issue as well.