2005-06-28 04:00:00
mitre
PUBLISHED
ezhttpbench.php in eZ httpbench 1.1 allows remote attackers to read arbitrary files via a full pathname in the AnalyseSite parameter.