CVE-2008-1653

Name of the Vulnerable Software and Affected Versions Sava's Link Manager version 2.0

Description A directory traversal issue exists, allowing remote attackers to include and execute arbitrary local files. This is achieved by using directory traversal sequences in the q parameter of the index.php file.

Recommendations For Sava's Link Manager version 2.0, consider restricting access to the index.php file or limiting the use of the q parameter to prevent exploitation until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.