CVE-2010-0799

2010-03-0220:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.3%

JSON

Directory traversal vulnerability in misc/tell_a_friend/tell.php in phpunity.newsmanager allows remote attackers to read arbitrary files via a … (dot dot) in the id parameter.

References

osvdb.org/62036

packetstormsecurity.org/1001-exploits/phpunity-lfi.txt

secunia.com/advisories/38409

www.exploit-db.com/exploits/11290