CVE-2002-1966 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2002-1966

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Directory traversal vulnerability in magiccard.cgi in My Postcards Platinum 5.0 and 6.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the page parameter.

Affected Software

Name	Vendor	Start Version	End Version
My_postcards_platinum	My_postcards	5.0 (including)	5.0 (including)
My_postcards_platinum	My_postcards	6.0 (including)	6.0 (including)

References

http://packetstormsecurity.nl/0206-exploits/magiccard_vuln.txt
http://www.securiteam.com/unixfocus/5IP0G2K7FQ.html
http://www.securityfocus.com/bid/5029
http://packetstormsecurity.nl/0206-exploits/magiccard_vuln.txt
http://www.securiteam.com/unixfocus/5IP0G2K7FQ.html
http://www.securityfocus.com/bid/5029