CVE-2007-6528
Directory traversal vulnerability in tiki-listmovies.php in TikiWiki before 1.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) and modified filename in the movie parameter.
Date published : 2007-12-27
http://www.securityfocus.com/bid/27008
http://www.securityfocus.com/archive/1/485482/100/0/threaded