CVE-2008-4486

Directory traversal vulnerability in index.php in SAC.php (SACphp), as used in Yerba 6.3 and earlier, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the mod parameter.
Configurations

Configuration 1

cpe:2.3:a:yerba:yerba:6.28:*:*:*:*:*:*:*
cpe:2.3:a:yerba:yerba:*:*:*:*:*:*:*:*

Information

Published : 2008-10-08 02:00

Updated : 2017-09-29 01:32


NVD link : CVE-2008-4486

Mitre link : CVE-2008-4486

Products Affected
No products.
CWE