cpe:/a:virtual_design_studios:vlbook:1.21 CVE-2008-2073 2008-05-05T12:20:00.000-04:00 2017-09-28T21:31:00.130-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-05-05T13:05:00.000-04:00 ALLOWS_OTHER_ACCESS BUGTRAQ 20080501 vlBook 1.21 (ALL VERSION) BID 29006 SECUNIA 30046 SREASON 3854 EXPLOIT-DB 5529 XF vlbook-globalinc-file-include(42127) Directory traversal vulnerability in include/global.inc.php in Virtual Design Studio vlbook 1.21 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the l parameter.