Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2009-4960
Disclosure Date: July 28, 2010 (last updated October 04, 2023)
Directory traversal vulnerability in modules/backup/download.php in Lanai Core 0.6 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter.
0
Attacker Value
Unknown
CVE-2009-4961
Disclosure Date: July 28, 2010 (last updated October 04, 2023)
Lanai Core 0.6 allows remote attackers to obtain configuration information via a direct request to info.php, which calls the phpinfo function.
0
