CVE-2005-0283 Information

Description

Directory traversal vulnerability in index.php in QwikiWiki allows remote attackers to read arbitrary files via a .. (dot dot) and a 00 at the end of the filename in the page parameter.

Reference

http://marc.info/?l=bugtraq&m=110486832621053&w=2 http://secunia.com/advisories/12044 http://www.qwikiwiki.com/index.php?page=QwikiVulnerability http://www.securityfocus.com/bid/12163 https://exchange.xforce.ibmcloud.com/vulnerabilities/18748