Security Advisory

CVE-2008-4486

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2008-10-08 01:00:00

Last updated 2024-08-07 10:17:09

Assigner mitre

State PUBLISHED

Description

Directory traversal vulnerability in index.php in SAC.php (SACphp), as used in Yerba 6.3 and earlier, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the mod parameter.

← Browse all CVEs View on cve.org ↗