CVE-2007-2252 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2007-2252
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-2252

Description: Directory traversal vulnerability in iconspopup.php in Exponent CMS 0.96.6 Alpha and earlier allows remote attackers to obtain sensitive information via a .. (dot dot) in the icodir parameter.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/33936 SAID Secunia Advisory: SA24934 OSVDB 35051 MISC http://www.bugtraq.ir/articles/advisory/exponent_multiple_vulnerabilities/10 BID 23574

Return to the previous page.