CVE-2008-7090

2009-08-26T10:24:17
ID CVE-2008-7090
Type cve
Reporter NVD
Modified 2018-10-11T16:58:16

Description

Multiple directory traversal vulnerabilities in Pligg 9.9 and earlier allow remote attackers to (1) determine the existence of arbitrary files via a .. (dot dot) in the $tb_url variable in trackback.php, or (2) include arbitrary files via a .. (dot dot) in the template parameter to settemplate.php.