Directory traversal vulnerability in index.php in Project Alumni 1.0.9 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the act parameter.
References
Configurations
Information
Published : 2007-11-29 16:46
Updated : 2017-09-28 18:29
NVD link : CVE-2007-6184
Mitre link : CVE-2007-6184
JSON object : View
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Products Affected
project_alumni
- project_alumni