Directory traversal vulnerability in PostNuke 0.723 and earlier allows remote attackers to include arbitrary files named theme.php via the theme parameter to index.php.
References
Configurations
History
20 Nov 2024, 23:47
Type | Values Removed | Values Added |
---|---|---|
References | () http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0117.html - Exploit |
Information
Published : 2003-12-31 05:00
Updated : 2024-11-20 23:47
NVD link : CVE-2003-1537
Mitre link : CVE-2003-1537
CVE.ORG link : CVE-2003-1537
JSON object : View
Products Affected
postnuke_software_foundation
- postnuke
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')