Описание
Directory traversal vulnerability in download.php in EZWebAlbum allows remote attackers to read arbitrary files via the dlfilename parameter.
Directory traversal vulnerability in download.php in EZWebAlbum allows remote attackers to read arbitrary files via the dlfilename parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2008-3293
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43920
- https://www.exploit-db.com/exploits/6112
- http://securityreason.com/securityalert/4034
- http://www.securityfocus.com/archive/1/494573/100/0/threaded
- http://www.securityfocus.com/bid/30311
- http://www.vupen.com/english/advisories/2008/2160/references
Связанные уязвимости
nvd
больше 17 лет назад
Directory traversal vulnerability in download.php in EZWebAlbum allows remote attackers to read arbitrary files via the dlfilename parameter.