Xpression News : Security Vulnerabilities, CVEs, CVSS score >= 7
Directory traversal vulnerability in archives.php in Xpression News (X-News) 1.0.1 allows remote attackers to include arbitrary files or obtain sensitive information via a .. (dot dot) in the xnews-template parameter.
Max CVSS
7.5
EPSS Score
4.74%
Published
2007-02-21
Updated
2017-10-11
1 vulnerabilities found