Vulnerabilities > CVE-2002-2167 - Unspecified vulnerability in Thorsten Korner 123Tkshop 0.2/0.3
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Directory traversal vulnerability in function_foot_1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via .. (dot dot) sequences terminated by a null character in the $designNo variable, which is part of an "include" function call.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |