Directory traversal vulnerability in admin/modules/aa/preview.php in Syntax Desktop 2.7 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the synTarget parameter.
References
Configurations
History
No history.
Information
Published : 2009-02-10 07:00
Updated : 2024-02-28 11:21
NVD link : CVE-2009-0448
Mitre link : CVE-2009-0448
CVE.ORG link : CVE-2009-0448
JSON object : View
Products Affected
syntax_desktop
- syntax_desktop
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')