CVE-2008-2876

Name of the Vulnerable Software and Affected Versions mUnky version 0.0.1

Description The issue allows remote attackers to include and execute arbitrary local files. This is achieved by using a .. (dot dot) in the zone parameter of the index.php file, enabling directory traversal.

Recommendations For mUnky version 0.0.1, restrict access to the zone parameter in the index.php file to prevent directory traversal attacks. As a temporary workaround, consider validating and sanitizing user input for the zone parameter to minimize the risk of exploitation.