2 matches found
CVE-2008-7240
CVE-2008-7240 describes a directory traversal vulnerability in Linux Web Shop (LWS) PHP User Base 1.3beta. The flaw is in include/unverified.inc.php and allows remote attackers to include and execute arbitrary local files by manipulating the template parameter. Public references (X-Force, Securit...
CVE-2008-7240
Directory traversal vulnerability in include/unverified.inc.php in Linux Web Shop LWS php User Base 1.3beta allows remote attackers to include and execute arbitrary local files via the template parameter...