CVE-2013-7097 Information

Description

Directory traversal vulnerability in 7 Media Web Solutions eduTrac before 1.1.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the showmask parameter to installer/overview.php.

Reference

http://www.securityfocus.com/bid/64255 https://www.htbridge.com/advisory/HTB23190