cpe:/a:edreamers:edcontainer:2.22 CVE-2008-5818 2009-01-02T13:11:09.703-05:00 2017-09-28T21:32:49.743-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-05T09:40:00.000-05:00 ALLOWS_OTHER_ACCESS BID 33026 SECUNIA 33335 SREASON 4861 EXPLOIT-DB 7604 XF edcontainer-index-file-include(47609) Directory traversal vulnerability in index.php in eDreamers eDContainer 2.22, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lg parameter. NOTE: some of these details are obtained from third party information.