Directory traversal vulnerability in PostNuke 0.723 and earlier allows remote attackers to include arbitrary files named theme.php via the theme parameter to index.php.
References
Link | Resource |
---|---|
http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0117.html | Exploit |
Configurations
History
No history.
Information
Published : 2003-12-31 05:00
Updated : 2024-02-04 16:31
NVD link : CVE-2003-1537
Mitre link : CVE-2003-1537
CVE.ORG link : CVE-2003-1537
JSON object : View
Products Affected
postnuke_software_foundation
- postnuke
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')