NuytsTech Security

CVE-2009-3123

by ·

Directory traversal vulnerability in gallery/gallery.php in Wap-Motor before 18.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the image parameter.

Date published : 2009-09-09

http://packetstormsecurity.org/0908-exploits/wapmotor-lfi.txt

http://osvdb.org/57426

Tags: