Published: 07/12/2007 Updated: 08/08/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Directory traversal vulnerability in pages/default.aspx in Absolute News Manager.NET 5.1 allows remote malicious users to read arbitrary files via a .. (dot dot) in the template parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
xigla absolute news manager.net 5.1

source: wwwsecurityfocuscom/bid/26692/info Absolute News Manager NET is prone to multiple remote vulnerabilities, including multiple cross-site scripting, SQL-injection, and information-disclosure issues Attackers can exploit these issues to steal cookie-based authentication credentials, execute arbitrary script code in the context of ...

CWE-22 http://marc.info/?l=bugtraq&m=119678724111351&w=2 http://www.procheckup.com/Vulnerability_PR07-39.php http://www.xigla.com/news/default.aspx http://www.xigla.com/security/ANMNET51-SecurityUpdate20071128.zip http://www.securityfocus.com/bid/26692 http://secunia.com/advisories/27923 http://osvdb.org/40575 https://exchange.xforce.ibmcloud.com/vulnerabilities/38870 https://nvd.nist.gov https://www.exploit-db.com/exploits/30841/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-6268

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect