CVE-2008-2896

Name of the Vulnerable Software and Affected Versions FireAnt version 1.3

Description A directory traversal issue exists, allowing remote attackers to include and execute arbitrary local files. This is achieved by using a .. (dot dot) in the page parameter of the index.php file.

Recommendations For FireAnt version 1.3, consider restricting access to the index.php file or validating the page parameter to prevent directory traversal attacks until a patch is available. As a temporary workaround, disabling the execution of arbitrary local files via the index.php file can help minimize the risk of exploitation.