Directory traversal vulnerability in viewimg.php in KorWeblog 1.6.2-cvs and earlier allows remote attackers to list arbitrary directories via a .. (dot dot) in the path parameter.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Korweblog |
Korweblog |
1.6.2cvs |
1.6.2cvs |
References