CVE-2003-1537

PostNuke < 0.723 - Path Traversal via Theme Parameter

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in PostNuke 0.723 and earlier allows remote attackers to include arbitrary files named theme.php via the theme parameter to index.php.

References (1)

Core 1
Core References
Exploit mailing-list x_refsource_vulnwatch
http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0117.html

Scores

EPSS 0.0134
EPSS Percentile 67.9%

Details

CWE
CWE-22
Status published
Products (1)
postnuke_software_foundation/postnuke < 0.723
Published Dec 31, 2003
Tracked Since Feb 18, 2026