Directory traversal

2007-04-2621:19:00

PRIOn knowledge base

www.prio-n.com

7.6 High

AI Score

Confidence

Low

0.03 Low

EPSS

Percentile

90.9%

JSON

Directory traversal vulnerability in includes/footer.php in News Manager Deluxe (NMDeluxe) 1.0.1 allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the template parameter.

CPENameOperatorVersion
news_manager_deluxeeq1.0.1

CPE	Name	Operator	Version
	news_manager_deluxe	eq	1.0.1

References

osvdb.org/34997

secunia.com/advisories/24896

www.vupen.com/english/advisories/2007/1395

www.exploit-db.com/exploits/3742