CVE-2005-4510

NetPublish Server 7 - Path Traversal

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-4510. PoCs published by Andy Davis.

AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in Portfolio Netpublish Server 7, allowing an attacker to retrieve arbitrary files by manipulating the 'template' parameter in the URL. The provided example fetches the 'boot.ini' file, confirming the vulnerability.

Description

Directory traversal vulnerability in server.np in NetPublish Server 7 allows remote attackers to read arbitrary files via "../" sequences in the template parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Andy Davis · textwebappscgi
https://www.exploit-db.com/exploits/26914

This exploit demonstrates a directory traversal vulnerability in Portfolio Netpublish Server 7, allowing an attacker to retrieve arbitrary files by manipulating the 'template' parameter in the URL. The provided example fetches the 'boot.ini' file, confirming the vulnerability.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Portfolio Netpublish Server 7
No auth needed
Prerequisites: Network access to the target server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Exploit, Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/18173
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15974
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=113511429307550&w=2
Exploit vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1015393
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2005/3045

Scores

EPSS 0.0291
EPSS Percentile 85.2%

Details

Status published
Products (1)
extensis/netpublish_server 7.0
Published Dec 23, 2005
Tracked Since Feb 18, 2026