Directory traversal vulnerability in include/body.inc.php in Linux Web Shop (LWS) php Download Manager 1.0 and 1.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the content parameter.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2008-02-27T19:00:00
Updated: 2024-08-07T08:08:57.451Z
Reserved: 2008-02-27T00:00:00
Link: CVE-2008-1042
Vulnrichment
No data.
NVD
Status : Modified
Published: 2008-02-27T19:44:00.000
Modified: 2017-09-29T01:30:31.520
Link: CVE-2008-1042
Redhat
No data.