CVE-2002-2128

2002-12-31T05:00:00
ID CVE-2002-2128
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T20:32:00

Description

editform.php in w-Agora 4.1.5 allows local users to execute arbitrary PHP code via .. (dot dot) sequences in the file parameter.