2 matches found
CVE-2007-1930
Directory traversal vulnerability in download2.php in cattaDoc 2.21, and possibly other versions including 3.0, allows remote attackers to read arbitrary files via a .. dot dot in the fn1 parameter...
CVE-2007-1930
CVE-2007-1930 affects cattaDoc and specifically its download2.php on version 2.21 (and possibly 3.0). The issue is a directory traversal vulnerability: remote attackers can read arbitrary files by supplying a .. in the fn1 parameter, enabling access to unintended file paths. Root cause is imprope...