CVE-2008-2342 (News Manager) [Sitemap] - HeapOverflow Computer Security Community & Forums : Heap Overflow.com
PDA

View Full Version : CVE-2008-2342 (News Manager)

Heap
19-05-08, 18:44
Directory traversal vulnerability in attachments.php in News Manager 2.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2342)