Directory traversal vulnerability in Jon Hedley AlienForm2 (typically installed as af.cgi or alienform.cgi) allows remote attackers to read or modify arbitrary files via an illegal character in the middle of a .. (dot dot) sequence in the parameters (1) _browser_out or (2) _out_file.
Score: 0.0
Priority: Unclassified
Score: 0.01109
Percentile:
0.77176
CVSS v2 Score: 6.4
Severity: