CVE-2008-1537

Directory traversal vulnerability in pb_inc/admincenter/index.php in PowerScripts PowerBook 1.21 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter. NOTE: in some environments, this can be leveraged for remote file inclusion by using a UNC share pathname or an ftp, ftps, or ssh2.sftp URL.
Configurations

Configuration 1

cpe:2.3:a:powerscripts:powerbook:1.21:*:*:*:*:*:*:*

Information

Published : 2008-03-28 06:44

Updated : 2018-10-11 08:35


NVD link : CVE-2008-1537

Mitre link : CVE-2008-1537

Products Affected
No products.
CWE