CVE-2009-1912 – webSPELL 4.2.0e - 'page' Blind SQL Injection

https://notcve.org/view.php?id=CVE-2009-1912

04 Jun 2009 — Directory traversal vulnerability in src/func/language.php in webSPELL 4.2.0e and earlier allows remote attackers to include and execute arbitrary local .php files via a .. (dot dot) in a language cookie. NOTE: this can be leveraged for SQL injection by including awards.php. Vulnerabilidad de salto de directorio en src/func/language.php en webSPELL v4.2.0e y anteriores, permite a los atacantes remotos incluir y ejecutar arbitrariamente archivos locales .php a través de ..(punto punto) en una cookie de lengu... • https://www.exploit-db.com/exploits/8622 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •