CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-1699

Directory traversal vulnerability in pnadminapi.php in the Xanthia module in PostNuke 0.760-RC3 allows remote administrators to read arbitrary files via a .. (dot dot) in the skin parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.9%

CVSS Severity

CVSS v2 Score 4.0

References

http://marc.info/?l=bugtraq&m=111670586322172&w=2
http://marc.info/?l=bugtraq&m=111670586322172&w=2

Products affected by CVE-2005-1699

Postnuke Software Foundation » Postnuke » Version: 0.760_rc3

cpe:2.3:a:postnuke_software_foundation:postnuke:0.760_rc3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-1699

Products

Pricing

Contact Us