CVE-2009-2101 Information

Description

Directory traversal vulnerability in archive.php in TorrentVolve 1.4 when register_globals is enabled allows remote attackers to delete arbitrary files via a .. (dot dot) in the deleteTorrent parameter.

Reference

https://exchange.xforce.ibmcloud.com/vulnerabilities/51088 https://www.exploit-db.com/exploits/8931