Security Advisory
CVE-2009-2313
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Directory traversal vulnerability in index.php in Jinzora Media Jukebox 2.8 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the name parameter.