2 matches found
CVE-2008-0615
CVE-2008-0615 concerns the DMSGuestbook WordPress plugin, specifically versions 1.7.0 and 1.8.0. A directory traversal flaw in wp-admin/admin.php lets remote authenticated users read arbitrary files by supplying path traversal sequences in the folder and file parameters. The security impact is co...
CVE-2008-0615
Directory traversal vulnerability in wp-admin/admin.php in the DMSGuestbook 1.8.0 and 1.7.0 plugin for WordPress allows remote authenticated users to read arbitrary files via a .. dot dot in the 1 folder and 2 file parameters...