CVE-2008-0798 (Artmedic Weblog) |
|
| BugsAlert Home > CVE-2008-0798 (Artmedic Weblog) | |
|
Multiple directory traversal vulnerabilities in artmedic webdesign weblog 1.0, when magic_quotes_gpc is disabled, allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) ta parameter to artmedic_index.php, reached through index.php; and the (2) date parameter to artmedic_print.php. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-0798 Learn more about CVE-2008-0798 (Artmedic Weblog) |
|
| Tags: cve-2008-0798 artmedic weblog | |
Related Items |
|
|
FrSIRT - Sun N1 Service Provisioning System Security Bypass Vulnerability
|
|
|
CVE-2008-0530 (Skinny Client Control Protocol (SCCP) firmware, Session Initiation Protocol (SIP)...)
|
|
|
Bugtraq: OtherLogic[vocourse.php]SQL Injection Exploit
|
|
|
Poppler "pageWidgets" Uninitialized Memory Access
|
|
|
CVE-2008-3225 (Joomla)
|
|
|
PE_TRATS.A-O
|
|
|
FrSIRT - Mandriva Security Update Fixes OpenAFS Denial of Service Vulnerability
|
|
