2003-03-18 05:00:00
mitre
PUBLISHED
tmp_view.php in FUDforum before 2.2.0 allows remote attackers to read arbitrary files via an absolute pathname in the file parameter.