CVE-2009-3181
CVE-2009-3181 affects Anantasoft Gazelle CMS 1.0. A directory traversal flaw enables remote attackers to overwrite arbitrary files through a .. (dot dot) in the customizetemplate parameter in a direct request to admin/settemplate.php. Impact and exploitability are stated in the CVE description (o...