Description

thumbsup.php in Thumbs-Up 1.12, as used in LightNEasy "no database" (aka flat) and SQLite 1.2.2 and earlier, allows remote attackers to copy, rename, and read arbitrary files via directory traversal sequences in the image parameter with a modified cache_dir parameter containing a %00 (encoded null byte).

Remediation

References

CVE-2008-6592

Related Vulnerabilities

WordPress Plugin Simple 301 Redirects by BetterLinks Multiple Security Bypass Vulnerabilities (2.0.3)

Oracle HTTP Server CVE-2021-25219 Vulnerability (CVE-2021-25219)

MediaWiki Improper Access Control Vulnerability (CVE-2015-8008)

WordPress Plugin Translate WordPress with GTranslate Open Redirect (2.8.10)

WordPress Plugin Easy Registration Forms Unspecified Vulnerability (1.8.4)

Severity

High

Classification

CVE-2008-6592 CWE-22

Tags

Missing Update Known Vulnerabilities