Directory traversal vulnerability in includes/operator_chattranscript.php in Scott Weedon Ajax Chat, possibly 0.1, allows remote malicious users to read arbitrary files via a .. (dot dot) in the chatid parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
scott weedon ajax chat 0.1 |