Intrusion Prevention

PHP.mod.php.MOD.Parameter.Directory.Traversal

Description

It indicates a possible exploit of a directory traversal vulnerability in eNdonesia.
This vulnerability is due to input validation errors in "mod.php" when processing user-supplied parameters, which could be exploited by attackers to cause arbitrary scripting code to be executed by the user's browser in the security context of an affected Web site.

Affected Products

eNdonesia version 8.4 and prior.

Impact

Directory transversal.

Recommended Actions

eNdonesia Homepage:
http://sourceforge.net/projects/endonesia

CVE References

CVE-2006-6872