Directory traversal vulnerability in index.php in phpWebFTP 3.2 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the language parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Phpwebftp | Phpwebftp | * | 3.2 (including) |