CVE-2008-2415

Publication date

2008-05-22 10:00:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in template/purpletech/base_include.php in DigitalHive (aka hive) 2.0 RC2 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter.