CVE-2007-1930

Directory traversal vulnerability in download2.php in cattaDoc 2.21, and possibly other versions including 3.0, allows remote attackers to read arbitrary files via a .. (dot dot) in the fn1 parameter.
Configurations

Configuration 1

cpe:2.3:a:cattadoc:cattadoc:3.0:*:*:*:*:*:*:*
cpe:2.3:a:cattadoc:cattadoc:2.21:*:*:*:*:*:*:*

Information

Published : 2007-04-10 11:19

Updated : 2017-10-11 01:32


NVD link : CVE-2007-1930

Mitre link : CVE-2007-1930

Products Affected
No products.