3 matches found
CVE-2009-0286
Directory traversal vulnerability in upgrade/index.php in OpenGoo 1.1, when registerglobals is enabled and magicquotesgpc is disabled, allows remote attackers to read arbitrary files via a .. dot dot in the formdatascriptclass parameter...
CVE-2009-0286
OpenGoo 1.1 is affected by a directory traversal vulnerability in upgrade/index.php. If register_globals is enabled and magic_quotes_gpc is disabled, an attacker can read arbitrary files via a .. in the form_data[script_class] parameter. This is the concrete vulnerability described across the CVE...
CVE-2009-0286
Directory traversal vulnerability in upgrade/index.php in OpenGoo 1.1, when registerglobals is enabled and magicquotesgpc is disabled, allows remote attackers to read arbitrary files via a .. dot dot in the formdatascriptclass parameter...