CVE-2009-2180

Multiple directory traversal vulnerabilities in upfiles/index.php in Pc4 Uploader 10.0 and earlier allow remote attackers to read arbitrary files via (1) a .. (dot dot) or (2) absolute path in the file parameter.

Date published : 2009-06-23

https://www.exploit-db.com/exploits/8988

http://osvdb.org/55314