Absolute path traversal vulnerability in download.php in Jeebles Directory 2.9.60 allows remote attackers to read arbitrary files via a full pathname in the query string. NOTE: some of these details are obtained from third party information.
CPE | Name | Operator | Version |
---|---|---|---|
jeebles_directory | eq | 2.9.60 |