CVE-2008-6423

Directory traversal vulnerability in passwiki.php in PassWiki 0.9.16 RC3 and earlier allows remote attackers to read arbitrary local files via a .. (dot dot) in the site_id parameter.
Configurations

Configuration 1

cpe:2.3:a:i-apps:passwiki:0.9.16:beta1:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.12:*:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.16:beta3:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.11:*:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.16:beta2:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.10:*:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.7:*:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.14:*:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.15:beta:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.8:*:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.13:*:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.5:*:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.15:*:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.15:rc1:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.16:rc1:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.15:beta2:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:*:rc3:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.6:*:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.16:rc2:*:*:*:*:*:*
cpe:2.3:a:i-apps:passwiki:0.9.9:*:*:*:*:*:*:*

Information

Published : 2009-03-06 06:30

Updated : 2017-09-29 01:33


NVD link : CVE-2008-6423

Mitre link : CVE-2008-6423

Products Affected
No products.
CWE