Description
Directory traversal vulnerability in PostNuke 0.723 and earlier allows remote attackers to include arbitrary files named theme.php via the theme parameter to index.php.
References (1)
Core 1
Core References
Exploit mailing-list
x_refsource_vulnwatch
http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0117.html
Scores
EPSS
0.0134
EPSS Percentile
67.9%
Details
CWE
CWE-22
Status
published
Products (1)
postnuke_software_foundation/postnuke
< 0.723
Published
Dec 31, 2003
Tracked Since
Feb 18, 2026