Security Advisory

CVE-2009-0592

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-02-16 17:00:00

Last updated 2024-08-07 04:40:05

Assigner mitre

State PUBLISHED

Description

Multiple directory traversal vulnerabilities in PNphpBB2 1.2i and earlier allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the ModName parameter to (1) admin_words.php, (2) admin_groups_reapir.php, (3) admin_smilies.php, (4) admin_ranks.php, (5) admin_styles.php, and (6) admin_users.php in admin/.

← Browse all CVEs View on cve.org ↗