CVE-2006-6138
CVE-2006-6138 describes a directory traversal vulnerability in the download.php of Sisfo Kampus 0.8, allowing remote attackers to list arbitrary directories via an absolute pathname supplied in the dir parameter. The CVSS metrics indicate a Network attack vector, low attack complexity , no authen...