CVE-2004-2445

Name of the Vulnerable Software and Affected Versions: Jaws version 0.3 BETA

Description: A directory traversal issue exists, allowing remote attackers to view arbitrary files by utilizing a .. (dot dot) in the gadget parameter of the index.php file.

Recommendations: For Jaws version 0.3 BETA, consider restricting access to the gadget parameter in the index.php file until a patch is available. As a temporary workaround, avoid using the gadget parameter with untrusted input to minimize the risk of exploitation.