CVE-2006-1581

Directory traversal vulnerability in index.php in Blank’N’Berg 0.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the _path parameter.

Date published : 2006-04-02

http://www.securityfocus.com/bid/17345

http://www.silitix.com/bnb.php