CVE-2007-3707

2007-07-11T23:30:00
ID CVE-2007-3707
Type cve
Reporter cve@mitre.org
Modified 2018-10-15T21:29:00

Description

Directory traversal vulnerability in index.php in CodeIgniter 1.5.3 before 20070628, when enable_query_strings is true, allows remote attackers to read arbitrary files via a .. (dot dot) in the c parameter.