Vulnerability Details CVE-2005-2394
show_news.php in CuteNews 1.3.6 allows remote attackers to obtain the full path of the server via an invalid archive parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.4%
CVSS Severity
CVSS v2 Score 5.0
Products affected by CVE-2005-2394
-
cpe:2.3:a:cutephp:cutenews:1.3.6