Directory traversal vulnerability in joovili.images.php in Joovili 3.0.0 up to and including 3.0.6 allows remote malicious users to read arbitrary files via a .. (dot dot) in the picture parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
joovili joovili |