CVE-2007-2285

2007-04-26T19:19:00
ID CVE-2007-2285
Type cve
Reporter cve@mitre.org
Modified 2017-10-11T01:32:00

Description

Directory traversal vulnerability in examples/layout/feed-proxy.php in Jack Slocum Ext 1.0 alpha1 (Ext JS) allows remote attackers to read arbitrary files via a .. (dot dot) in the feed parameter. NOTE: analysis by third party researchers indicates that this issue might be platform dependent.