2 matches found
CVE-2007-5812
Directory traversal vulnerability in modules/Builder/DownloadModule.php in ModuleBuilder 1.0 allows remote attackers to read arbitrary files via a .. dot dot in the file parameter...
CVE-2007-5812
CVE-2007-5812 affects Module Builder 1.0 within SugarCRM, where the PHP script modules/Builder/DownloadModule.php fails to validate the file parameter before using it to read and disclose file contents. This directory traversal vulnerability allows remote attackers to read arbitrary files on the ...