Vulnerabilities > CVE-2004-0327 - Unspecified vulnerability in Skintech PHPnewsmanager 1.36
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Directory traversal vulnerability in functions.php in PhpNewsManager 1.46 allows remote attackers to retrieve arbitrary files via .. (dot dot) sequences in the clang parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description PHP 4.x/5.x MySQL Safe_Mode Filesystem Circumvention Vulnerability (2). CVE-2002-0229,CVE-2004-0327. Remote exploit for php platform id EDB-ID:21265 last seen 2016-02-02 modified 2002-02-03 published 2002-02-03 reporter anonymous source https://www.exploit-db.com/download/21265/ title PHP 4.x/5.x MySQL Safe_Mode Filesystem Circumvention Vulnerability 2 description PHP 4.x/5.x MySQL Safe_Mode Filesystem Circumvention Vulnerability (1). CVE-2002-0229,CVE-2004-0327. Remote exploit for php platform id EDB-ID:21264 last seen 2016-02-02 modified 2002-02-03 published 2002-02-03 reporter Dave Wilson source https://www.exploit-db.com/download/21264/ title PHP 4.x/5.x MySQL Safe_Mode Filesystem Circumvention Vulnerability 1 description PHP 4.x/5.x MySQL Safe_Mode Filesystem Circumvention Vulnerability (3). CVE-2002-0229,CVE-2004-0327. Remote exploit for php platform id EDB-ID:21266 last seen 2016-02-02 modified 2002-02-03 published 2002-02-03 reporter anonymous source https://www.exploit-db.com/download/21266/ title PHP 4.x/5.x MySQL Safe_Mode Filesystem Circumvention Vulnerability 3 description phpNewsManager 1.36 Functions Script File Disclosure Vulnerability. CVE-2004-0327. Webapps exploit for php platform id EDB-ID:23742 last seen 2016-02-02 modified 2004-02-23 published 2004-02-23 reporter G00db0y source https://www.exploit-db.com/download/23742/ title phpNewsManager 1.36 Functions Script File Disclosure Vulnerability