CVE-2009-3167
CVE-2009-3167 affects Anantasoft Gazelle CMS 1.0. A directory traversal flaw in index.php allows reading arbitrary files via a .. sequence in the template parameter when magic_quotes_gpc is disabled. This is a server-side input handling issue in the template parameter, enabling potential exposure...