Alkacon : Security Vulnerabilities, CVEs, Published In 2006 (Directory traversal)
Absolute path traversal vulnerability in downloadTrigger.jsp in Alkacon OpenCms before 6.2.2 allows remote authenticated users to download arbitrary files via an absolute pathname in the filePath parameter.
Max CVSS
4.0
EPSS Score
0.37%
Published
2006-07-31
Updated
2018-10-17
1 vulnerabilities found