CVE-2001-1019

Publication date

2002-02-02 05:00:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in view_item CGI program in sglMerchant 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTML_FILE parameter.