CVE-2000-1176

Directory traversal vulnerability in YaBB search.pl CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack in the "catsearch" form field.

Date published : 2000-12-19

http://www.securityfocus.com/bid/1921

http://archives.neohapsis.com/archives/bugtraq/2000-11/0110.html