Directory traversal vulnerability in image.php in Clear Content 1.1 allows remote attackers to read arbitrary files via a … (dot dot) in the url parameter. NOTE: the researcher also suggests an analogous PHP remote file inclusion vulnerability, but this may be incorrect.
CPE | Name | Operator | Version |
---|---|---|---|
clear_content | eq | 1.1 |