Intrusion Prevention

Minis.Month.Directory.Traversal

Description

It indicates a possible exploit of a directory traversal vulnerability in minis.php in Minis, that may allow remote attackers to read arbitrary files via a .. (dot dot) in the month parameter.

Affected Products

Minis Minis 0.2.1

Impact

Information disclosure.

Recommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.

CVE References

CVE-2005-0293