2 matches found
CVE-2008-4602
Directory traversal vulnerability in index.php in Post Affiliate Pro 2.0 allows remote authenticated users to read and possibly execute arbitrary local files via a .. dot dot in the md parameter...
CVE-2008-4602
Post Affiliate Pro 2.0 is affected by a directory traversal vulnerability in index.php. Remote authenticated users can use a .. in the md parameter to read and potentially execute arbitrary local files. CVSS v2 base score 6.5 (Medium) with network access, single authentication, and partial impact...