Vulners
Lucene search
3 matches found
CVE-2008-1696
Directory traversal vulnerability in makepost.php in DaZPHPNews 0.1-1, when registerglobals is enabled and magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the prefixdir parameter...
3.7CVSS7.1AI score0.01639EPSS
Exploits1References4
CVE-2008-1696
The CVE-2008-1696 entry describes a directory traversal vulnerability in makepost.php of DaZPHPNews 0.1-1. Exploitation requires register_globals enabled and magic_quotes_gpc disabled, allowing an attacker to include and execute arbitrary local files by injecting dots (..) in the prefixdir parame...
3.7CVSS7.1AI score0.01639EPSS
Exploits1References4Affected Software1
CVE-2008-1696
creationtimestamp| type| source ---|---|--- 2008-04-02 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5347...
3.7CVSS5.8AI score0.01639EPSS
Exploits1References1
20