CVE-2004-2047

Description

Directory traversal vulnerability in EasyWeb FileManager 1.0 RC-1 for PostNuke allows remote attackers to retrieve arbitrary files via a .. (dot dot) in the pathext parameter.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/16806

http://secunia.com/advisories/12151

http://marc.info/?l=bugtraq&m=109068482605241&w=2

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3