CVE-2005-1621
published 2005-05-16CVE-2005-1621: Directory traversal vulnerability in the pnModFunc function in pnMod.php for PostNuke 0.750 through 0.760rc4 allows remote attackers to read arbitrary files…
PriorityP425medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
1.69%
74.1th percentile
Directory traversal vulnerability in the pnModFunc function in pnMod.php for PostNuke 0.750 through 0.760rc4 allows remote attackers to read arbitrary files via a .. (dot dot) in the func parameter to index.php.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| postnuke_software_foundation | postnuke | — | — |
| postnuke_software_foundation | postnuke | — | — |
| postnuke_software_foundation | postnuke | — | — |
| postnuke_software_foundation | postnuke | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://cvs.postnuke.com/viewcvs.cgi/Historic_PostNuke_Library/postnuke-devel/html/includes/pnMod.php.diff?r1=1.47&r2=1.48http://marc.info/?l=bugtraq&m=111627124301526&w=2http://news.postnuke.com/Article2690.htmlhttp://news.postnuke.com/modules.php?op=modload&name=News&file=article&sid=2691http://www.vupen.com/english/advisories/2005/0553http://cvs.postnuke.com/viewcvs.cgi/Historic_PostNuke_Library/postnuke-devel/html/includes/pnMod.php.diff?r1=1.47&r2=1.48http://marc.info/?l=bugtraq&m=111627124301526&w=2http://news.postnuke.com/Article2690.htmlhttp://news.postnuke.com/modules.php?op=modload&name=News&file=article&sid=2691http://www.vupen.com/english/advisories/2005/0553
2005-05-16
Published