CVE-2009-2313 Information

Description

Directory traversal vulnerability in index.php in Jinzora Media Jukebox 2.8 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the name parameter.

Reference

http://www.exploit-db.com/exploits/8278