Loading
Directory traversal vulnerability in fc.php in OpenX 2.6.3 allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the MAX_type parameter.
Use CWE-22, Openx vendor hub and Openx product page to widen CVE-2009-0291 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2013-4211, CVE-2013-7149 and CVE-2012-4990 for nearby disclosures in the same product family.