CVE-2000-1229 in Phoruminfo

Summary

Directory traversal vulnerability in Phorum 3.0.7 allows remote Phorum administrators to read arbitrary files via ".." (dot dot) sequences in the default .langfile name field in the Master Settings administrative function, which causes the file to be displayed in admin.php3.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

ID	Vulnerability	CWE	Exp	Cou	CVE
16214	Phorum admin.php3 path traversal	22	Not defined	Not defined	CVE-2000-1229

Reservation

07/14/2005

Disclosure

12/31/2000

Status

Confirmed

Entries

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2000-1229
NVD	https://nvd.nist.gov/vuln/detail/CVE-2000-1229
CVE Details	https://www.cvedetails.com/cve/CVE-2000-1229/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!