CVE-2008-4486
CVE-2008-4486 describes a directory traversal vulnerability in the SAC.php component of SACphp, used in Yerba 6.3 and earlier. An attacker can abuse a '..' in the mod parameter to cause index.php in SAC.php to include and execute arbitrary local files. The CVE entry notes remote access with netwo...