cpe:/a:mathopd:mathopd:1.4 cpe:/a:mathopd:mathopd:1.4_p1 cpe:/a:mathopd:mathopd:1.4_p2 cpe:/a:mathopd:mathopd:1.5_p3 cpe:/a:mathopd:mathopd:1.5_p4 cpe:/a:mathopd:mathopd:1.5_p4_1 cpe:/a:mathopd:mathopd:1.5_p4_2 cpe:/a:mathopd:mathopd:1.5_p5 cpe:/a:mathopd:mathopd:1.5_p6 CVE-2012-1050 2012-02-13T14:55:01.147-05:00 2017-08-28T21:31:10.443-04:00 4.3 NETWORK MEDIUM NONE PARTIAL NONE NONE http://nvd.nist.gov 2012-02-13T17:25:00.000-05:00 SECTRACK 1026641 BUGTRAQ 20120203 Mathopd - Directory Traversal Vulnerability SECUNIA 47908 OSVDB 78896 MLIST [mathopd] 20120202 security alert: directory traversal when using * in Location CONFIRM http://www.mathopd.org/security.html XF mathopd-http-directory-traversal(73049) Directory traversal vulnerability in Mathopd 1.4.x and 1.5.x before 1.5p7, when configured with the * construct for mass virtual hosting, allows remote attackers to read arbitrary files via a crafted Host header.