CVE-2007-2303

2007-04-2621:00:00

mitre

www.cve.org

7.1 High

AI Score

Confidence

High

0.03 Low

EPSS

Percentile

90.9%

JSON

Directory traversal vulnerability in includes/footer.php in News Manager Deluxe (NMDeluxe) 1.0.1 allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the template parameter.

References

osvdb.org/34997

secunia.com/advisories/24896

www.vupen.com/english/advisories/2007/1395

www.exploit-db.com/exploits/3742