64 matches found
CVE-2009-0497
Directory traversal vulnerability in log.jsp in Ignite Realtime Openfire 3.6.2 allows remote attackers to read arbitrary files via a ..\ dot dot backslash in the log parameter...
Directory traversal
Directory traversal vulnerability in log.jsp in Ignite Realtime Openfire 3.6.2 allows remote attackers to read arbitrary files via a ..\ dot dot backslash in the log parameter...
Directory traversal
Directory traversal vulnerability in viewlog.php in Coppermine Photo Gallery CPG 1.4.12 and earlier allows remote authenticated administrators to include and execute arbitrary local files via a .. dot dot in the log parameter...
CVE-2002-0786
The CVE-2002-0786 entry concerns the iCon administrative web server for Critical Path inJoin Directory Server 4.0. Affected component: the inJoin Directory Server 4.0 web interface (iCon admin). Vulnerability: authenticated inJoin administrators can read arbitrary files by specifying the target f...