CVE-2009-2124

Publication date

2009-06-19 17:32:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in page.php in Elvin 1.2.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the id parameter.