CVE-2008-2898
CVE-2008-2898 affects Hedgehog-CMS 1.21. A directory traversal flaw in includes/header.php allows remote attackers to include and execute arbitrary local files via a .. in the c_temp_path parameter. In some environments, this can enable remote file inclusion by using UNC share paths or ftp/ftps/s...