5
CVE-2004-0327
- EPSS 7.95%
- Veröffentlicht 23.11.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:05:23
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginDirectory traversal vulnerability in functions.php in PhpNewsManager 1.46 allows remote attackers to retrieve arbitrary files via .. (dot dot) sequences in the clang parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Skintech ≫ Phpnewsmanager Version1.36
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 7.95% | 0.94 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://marc.info/?l=bugtraq&m=107772470111000&w=2
http://www.securityfocus.com/bid/9720
http://www.zone-h.org/advisories/read/id=4024
https://exchange.xforce.ibmcloud.com/vulnerabilities/15283