2 matches found
CVE-2010-1492
Directory traversal vulnerability in help/frameRight.php in Elastix 1.6.0 allows remote attackers to read arbitrary files via a .. dot dot in the idnodo parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2010-1492
CVE-2010-1492 affects Elastix 1.6.0. A directory traversal flaw in help/frameRight.php (id_nodo parameter) lets remote attackers read arbitrary files using ..; no exploit details provided in the connected docs. CVSSv2 base score 5.0 (Medium). Remediation details are not specified in the supplied ...