CVE-2008-4486

Publication date

2008-10-08 01:00:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in index.php in SAC.php (SACphp), as used in Yerba 6.3 and earlier, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the mod parameter.