Lucene search
MitreCVE-2010-2136HistoryJun 02, 2010 - 6:30 p.m.
CVE-2010-2136
2010-06-0218:30:01
CWE-22
mitre
web.nvd.nist.gov
19
cve
2010
2136
directory traversal
article friendly
remote attack
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.8
Confidence
Low
EPSS
0.007
Percentile
79.9%
Directory traversal vulnerability in admin/index.php in Article Friendly, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a … (dot dot) in the filename parameter.
Affected configurations
Node
articlefriendlyarticle_friendlyMatch5.14-pro
| Vendor | Product | Version | CPE |
|---|---|---|---|
| articlefriendly | article_friendly | 5.14 | cpe:2.3:a:articlefriendly:article_friendly:5.14:-:pro:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2010-2136
2010-06-02 18:14:00
prion
prion
Directory traversal
2010-06-02 18:30:00
nvd
nvd
CVE-2010-2136
2010-06-02 18:30:01
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.8
Confidence
Low
EPSS
0.007
Percentile
79.9%
Related for CVE-2010-2136