CVE-2008-0814
CVE-2008-0814 describes a directory traversal in TRUC (Tracking Requirements & Use Cases) 0.11.0. The vulnerability affects download.php where the upload_filename parameter can be tainted with .. to read arbitrary files, enabling an attacker to disclose file contents. The issue is rooted in a mis...