CVE-2009-4960 (lanai-core)
Directory traversal vulnerability in modules/backup/download.php in Lanai Core 0.6 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter.
Bringing security awareness to the masses
Search this site
Categories
Recommended Sites
Pages
US-CERT Vulnerability Notes
- VU#204055: Blackboard Transact database credentials disclosure
- VU#707943: Microsoft Windows based applications may insecurely load dynamic libraries
- VU#644319: Ghostscript Heap Corruption in TrueType bytecode interpreter
- VU#278785: DevonIT weak authentication and buffer overflow in /usr/bin/tm-console-bin
- VU#320233: Wyse ThinOS LPD service buffer overflow vulnerability
Cyber Security Alerts
Google Search
Blogroll
Under Construction