Multiple absolute path traversal vulnerabilities in EditTag 1.2 allow remote malicious users to read arbitrary files via an absolute pathname in the file parameter to (1) edittag.cgi, (2) edittag.pl, (3) edittag_mp.cgi, or (4) edittag_mp.pl.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
edittag edittag 1.2 |