CVE-2008-2969 | Yektaweb Academic Web Tools up to 1.4.2.8 download.php dfile path traversal (EDB-5861 / XFDB-43175)
A vulnerability identified as problematic has been detected in Yektaweb Academic Web Tools up to 1.4.2.8. The impacted element is an unknown function of the file download.php. Performing manipulation of the argument dfile results in path traversal.
This vulnerability is reported as CVE-2008-2969. The attack is possible to be carried out remotely. Moreover, an exploit is present.