CVE-2007-6567

2007-12-28T16:46:00
ID CVE-2007-6567
Type cve
Reporter NVD
Modified 2017-09-28T21:30:00

Description

Directory traversal vulnerability in index.php in XZero Community Classifieds 4.95.11 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the pagename parameter in a page view action.