Directory traversal vulnerability in YaBB search.pl CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack in the catsearch form field.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Yabb |
Yabb |
2000-09-11 |
2000-09-11 |
References