Security Advisory

CVE-2007-1427

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-03-13 01:00:00

Last updated 2024-08-07 12:59:07

Assigner mitre

State PUBLISHED

Description

Directory traversal vulnerability in download_pdf.php in AssetMan 2.4a and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the pdf_file parameter.

← Browse all CVEs View on cve.org ↗