CVE-2008-2459 Information

Description

Directory traversal vulnerability in page.php in EntertainmentScript 1.4.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the page parameter.

Reference

http://secunia.com/advisories/30311 http://www.securityfocus.com/bid/29306 https://exchange.xforce.ibmcloud.com/vulnerabilities/42540 https://www.exploit-db.com/exploits/5655