Francisco Burzi : Security Vulnerabilities, CVEs, (Directory traversal)
Directory traversal vulnerability in autohtml.php in Francisco Burzi PHP-Nuke 8.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the filename parameter, a different vector than CVE-2006-4190. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Max CVSS
7.5
EPSS Score
0.99%
Published
2007-12-15
Updated
2008-11-15
Directory traversal vulnerability in modules.php in Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote attackers with administrative privileges to read arbitrary files via a .. (dot dot) in the startdir parameter.
Max CVSS
5.0
EPSS Score
1.55%
Published
2004-04-04
Updated
2017-07-11
Directory traversal vulnerability in modules.php in Gallery before 1.2.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the include parameter.
Max CVSS
5.0
EPSS Score
2.08%
Published
2001-11-18
Updated
2017-10-10
3 vulnerabilities found