CVE-2009-3787
Vivvo CMS 4.1.5.1 is affected by CVE-2009-3787, a directory-traversal/file-disclosure flaw in the files.php handler. The vulnerability allows reading arbitrary files via the file parameter when a logs/ segment is injected between two dots, filtered to a ../ sequence. NVD lists a base score of 5.0...