CVE-2009-3583

2009-12-23T18:30:00
ID CVE-2009-3583
Type cve
Reporter cve@mitre.org
Modified 2018-10-10T19:47:00

Description

Directory traversal vulnerability in the Preferences menu item in SQL-Ledger 2.8.24 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the countrycode field.