CVE-2008-1125
Podcast Generator is affected by directory traversal vulnerabilities in versions up to 1.0 BETA 2. The issues arise from insufficient input filtering in core/themes.php (theme_path) and download.php (filename), enabling remote attackers to read arbitrary files via ../ path traversal. Additional n...