CVE-2007-1126

Publication date

2007-02-27 02:00:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in index.php in xtcommerce allows remote attackers to read arbitrary files via a .. (dot dot) in the template parameter.