KorWeblog 1.6.2-cvs Directory Traversal Vulnerability

KorWeblog 1.6.2-cvs Directory Traversal Vulnerability

CVE-2004-1426 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Directory traversal vulnerability in index.php in KorWeblog 1.6.2-cvs and earlier allows remote attackers to read arbitrary files and execute arbitrary PHP files via .. (dot dot) sequences in the lng parameter.

Learn more about our Web App Pen Testing.