CVE-2009-0325

2009-01-29T13:30:02
ID CVE-2009-0325
Type cve
Reporter NVD
Modified 2017-09-28T21:33:44

Description

Directory traversal vulnerability in entries/index.php in Ninja Blog 4.8, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the cat parameter.