Directory traversal vulnerability in editor.php in Network Weathermap 0.97c and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the mapname parameter in a show_config action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
network-weathermap .network weathermap |
||
network-weathermap .network weathermap 0.97 |