CVE-2007-4820 Information

Description

Absolute path traversal vulnerability in blanko.preview.php in Sisfo Kampus 2006 allows remote attackers to read arbitrary local files and possibly execute local PHP scripts via the nmf parameter.

Reference

http://osvdb.org/39017 http://www.securityfocus.com/bid/25605 https://exchange.xforce.ibmcloud.com/vulnerabilities/36533 https://www.exploit-db.com/exploits/4380