Directory traversal vulnerability in help.php in the eskuel module in KwsPHP 1.3.456, as available before 20080416, allows remote attackers to execute arbitrary commands via the action parameter. NOTE: some of these details are obtained from third party information.
References
Configurations
Information
Published : 2009-02-19 17:30
Updated : 2017-10-18 18:30
NVD link : CVE-2008-6201
Mitre link : CVE-2008-6201
JSON object : View
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Products Affected
kwsphp
- kwsphp