CVE-2008-3555 (links, forum, gallery, knowledge

CVE-2008-3555 (links, forum, gallery, knowledge_base)
BugsAlert Home > CVE-2008-3555 (links, forum, gallery, knowledge_base)




Directory traversal vulnerability in index.php in (1) WSN Forum 4.1.43 and earlier, (2) Gallery 4.1.30 and earlier, (3) Knowledge Base (WSNKB) 4.1.36 and earlier, and (4) Links 4.1.44 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the TID parameter, as demonstrated by uploading a .jpg file containing PHP sequences. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3555 Learn more about CVE-2008-3555 (links, forum, gallery, knowledge_base)


Tags: cve-2008-3555 links forum gallery knowledge base

Related Items
CVE-2008-0068 (openview_network_node_manager)
RedHat: Important: cups security update
Bugtraq: [SECURITY] [DSA 1599-1] New dbus packages fix privilege escalation
CVE-2008-5170 (cheats_complete_website)
FrSIRT - Mandriva Security Update Fixes Libxml2 Multiple Vulnerabilities
RedHat: Important: xorg-x11 security update
WebCMS.es Cross-Site Scripting and SQL Injection Vulnerabilities

CVE-2008-3555 (links, forum, gallery, knowledge_base)