2 matches found
CVE-2009-4816
Directory traversal vulnerability in api/downloadchecker.php in MegaLab The Uploader 2.0 allows remote attackers to read arbitrary files via a .. dot dot in the filename parameter...
CVE-2009-4816
CVE-2009-4816 describes a directory traversal vulnerability in MegaLab The Uploader 2.0, exploitable through the filename parameter in api/download_checker.php where “..” can be used to read arbitrary files. Affected: MegaLab The Uploader 2.0 (component: api/download_checker.php). Root cause: imp...