CVE-2007-6400
CVE-2007-6400 affects PolDoc CMS (aka PDDMS) 0.96 in download_file.php. The vulnerability is a directory traversal flaw that lets remote attackers read arbitrary files by supplying a .. or absolute path in the filename parameter. This exposes partial confidentiality (per the CVSS 2.0 entry: AV:N/...