CVE-2016-0784 in OpenMeetings
Summary
Directory traversal vulnerability in the Import/Export System Backups functionality in Apache OpenMeetings before 3.1.1 allows remote authenticated administrators to write to arbitrary files via a .. (dot dot) in a ZIP archive entry.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.