Directory traversal vulnerability in doop CMS 1.3.7 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter to an unspecified component.Referenceshttp://www.securityfocus.com/bid/26075http://osvdb.org/37864https://exchange.xforce.ibmcloud.com/vulnerabilities/37205https://www.exploit-db.com/exploits/4536http://secunia.com/advisories/27255
