Ettee

**Name of the Vulnerable Software and Affected Versions** Sendcard versions 3.4.1 and earlier **Description** A directory traversal issue exists, allowing remote attackers to read arbitrary files by providing a full pathname in the `form` parameter of the sendcard.php file. **Recommendations** For Sendcard versions 3.4.1 and earlier, update to a version later than 3.4.1 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.