CVE-2004-1980 Information

Description

Directory traversal vulnerability in glossary.php in PROPS 0.6.1 allows remote attackers to view arbitrary files via a .. (dot dot) in (1) module or (2) format variables.

Reference

http://marc.info/?l=bugtraq&m=108342671616155&w=2 http://sourceforge.net/project/shownotes.php?group_id=29581&release_id=234433 https://exchange.xforce.ibmcloud.com/vulnerabilities/16036