Vulnerability Details CVE-2004-0664
Directory traversal vulnerability in modules.php in PowerPortal 1.x allows remote attackers to list arbitrary directories via a .. (dot dot) in the files parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.043
EPSS Ranking 88.4%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=108844362627811&w=2
- http://www.securityfocus.com/bid/10622
- http://www.swp-zone.org/archivos/advisory-07.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16530
- http://marc.info/?l=bugtraq&m=108844362627811&w=2
- http://www.securityfocus.com/bid/10622
- http://www.swp-zone.org/archivos/advisory-07.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16530
Products affected by CVE-2004-0664
-
cpe:2.3:a:powerportal:powerportal:1.1b
-
cpe:2.3:a:powerportal:powerportal:1.3
-
cpe:2.3:a:powerportal:powerportal:1.3b