CVE-2008-0156 Information

Description

Absolute path traversal vulnerability in index.php in Million Dollar Script 2.0.14 allows remote attackers to read arbitrary files via encoded /\ (2F) sequences in the link parameter.

Reference

http://securityreason.com/securityalert/3524 http://www.securityfocus.com/archive/1/485882/100/0/threaded http://www.securityfocus.com/bid/27174 https://exchange.xforce.ibmcloud.com/vulnerabilities/39492