CVE-2009-0722
CVE-2009-0722 affects Potato News 1.0.0. A directory traversal vulnerability in admin.php allows remote attackers to include and execute arbitrary files via .. in the user cookie parameter. This results in partial impact to confidentiality, integrity, and availability (CVSS 2.0 base score 7.5). N...