CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-2342

Directory traversal vulnerability in attachments.php in News Manager 2.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.021

EPSS Ranking 83.2%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.securityfocus.com/bid/29251
https://exchange.xforce.ibmcloud.com/vulnerabilities/42460
https://www.exploit-db.com/exploits/5624
http://www.securityfocus.com/bid/29251
https://exchange.xforce.ibmcloud.com/vulnerabilities/42460
https://www.exploit-db.com/exploits/5624

Products affected by CVE-2008-2342

News Manager » News Manager » Version: 2.0

cpe:2.3:a:news_manager:news_manager:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-2342

Products

Pricing

Contact Us