Directory traversal vulnerability in script/cat_for_aff.php in Netref 4 allows remote malicious users to read arbitrary files via a .. (dot dot) sequence in the ad_direct parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netref netref 4 |