| ID | CVE-2009-3151 | ||||||
| Sažetak | Directory traversal vulnerability in actions/downloadFile.php in Ultrize TimeSheet 1.2.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the fileName parameter. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | AV:N/AC:L/Au:N/C:P/I:N/A:N | ||||||
| Zadnje važnije ažuriranje | 19-09-2017 - 01:29 | ||||||
| Objavljeno | 10-09-2009 - 18:30 |
