CVE-2013-5639

2014-03-11T15:37:03
ID CVE-2013-5639
Type cve
Reporter NVD
Modified 2014-03-12T14:03:18

Description

Directory traversal vulnerability in users/login.php in Gnew 2013.1 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the gnew_language cookie.