Directory traversal vulnerability in glossary.php in PROPS 0.6.1 allows remote attackers to view arbitrary files via a .. (dot dot) in (1) module or (2) format variables.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Props | Props | 0.6.1 (including) | 0.6.1 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=108342671616155\u0026w=2
- http://sourceforge.net/project/shownotes.php?group_id=29581\u0026release_id=234433
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16036
- http://marc.info/?l=bugtraq\u0026m=108342671616155\u0026w=2
- http://sourceforge.net/project/shownotes.php?group_id=29581\u0026release_id=234433
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16036