CVE-2008-6516 Information

Description

Multiple directory traversal vulnerabilities in phpKF-Portal 1.10 allow remote attackers to include arbitrary files via a .. (dot dot) in the (1) tema_dizin parameter to baslik.php and (2) portal_ayarlarportal_dili parameter to anket_yonetim.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Reference

http://www.securityfocus.com/bid/30566 https://exchange.xforce.ibmcloud.com/vulnerabilities/44263