3 matches found
Directory traversal
Directory traversal vulnerability in download.php in Interface Medien ibase 2.03 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the filename parameter...
CVE-2008-6288
Directory traversal vulnerability in download.php in Interface Medien ibase 2.03 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the filename parameter...
CVE-2008-6288
CVE-2008-6288 affects Interface Medien ibase 2.03 and earlier. A flaw in download.php lets remote attackers read arbitrary files by supplying a .. in the filename parameter, impacting confidentiality. The CVSSv2 base score is 7.8 (HIGH). Exploit/code details are not provided in the connected docu...