CVE-2008-1042

2008-02-27T19:44:00
ID CVE-2008-1042
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:30:00

Description

Directory traversal vulnerability in include/body.inc.php in Linux Web Shop (LWS) php Download Manager 1.0 and 1.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the content parameter.