CVE-2009-2180

Publication date

2009-06-23 21:21:00

Family

mitre

State

PUBLISHED

Description

Multiple directory traversal vulnerabilities in upfiles/index.php in Pc4 Uploader 10.0 and earlier allow remote attackers to read arbitrary files via (1) a .. (dot dot) or (2) absolute path in the file parameter.