Security Advisory

CVE-2008-2993

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2008-07-03 17:47:00

Last updated 2024-08-07 09:21:35

Assigner mitre

State PUBLISHED

Description

Multiple directory traversal vulnerabilities in index.php in FOG Forum 0.8.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) fog_lang and (2) fog_skin parameters, probably related to libs/required/share.inc; and possibly the (3) fog_pseudo, (4) fog_posted, (5) fog_password, and (6) fog_cook parameters.

← Browse all CVEs View on cve.org ↗