CVE-2008-3770 (Freeway) |
|
| BugsAlert Home > CVE-2008-3770 (Freeway) | |
|
Multiple directory traversal vulnerabilities in Freeway 1.4.1.171, when register_globals is enabled, allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter to (1) includes/events_application_top.php; (2) english/account.php, (3) french/account.php, and (4) french/account_newsletters.php in includes/languages/; (5) includes/modules/faqdesk/faqdesk_article_require.php; (6) includes/modules/newsdesk/newsdesk_article_require.php; (7) card1... Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3770 Learn more about CVE-2008-3770 (Freeway) |
|
| Tags: cve-2008-3770 freeway | |
Related Items |
|
|
Wireshark Multiple Denial of Service Vulnerabilities
|
|
|
TROJ_VB.HAC
|
|
|
YourFreeWorld Products "id" SQL Injection Vulnerability
|
|
|
CVE-2008-4966 (linux-patch-openswan)
|
|
|
FOG Forum "index.php" Local File Inclusion Vulnerabilities
|
|
|
SUSE Update for Multiple Packages
|
|
|
RedHat: Important: autofs security update
|
|
