CVE-2009-2101

Publication date

2009-06-17 17:00:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in archive.php in TorrentVolve 1.4, when register_globals is enabled, allows remote attackers to delete arbitrary files via a .. (dot dot) in the deleteTorrent parameter.