Vulnonym.org

CVE-2008-1642 - Guelfic Massed

Description

Directory traversal vulnerability in index.php in Sava’s GuestBook 2.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the action parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Reference

http://www.securityfocus.com/bid/28536 http://secunia.com/advisories/29592 https://exchange.xforce.ibmcloud.com/vulnerabilities/41596