CVE-2007-2157

Publication date

2007-04-19 10:00:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in upload/force_download.php in Zomplog 3.8 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.