CVE-2008-0452

Siteman 1.1.9 - Path Traversal via Cat Parameter in Articles.php

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-0452. PoCs published by Khashayar Fereidani.

AI-analyzed exploit summary This is a writeup describing a file disclosure vulnerability in Siteman v1.1.9. The vulnerability allows an attacker to read arbitrary files by manipulating the 'cat' parameter in the URL.

Description

Directory traversal vulnerability in articles.php in Siteman 1.1.9 allows remote attackers to read arbitrary files via directory traversal sequences in the cat parameter in a viewart action.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Khashayar Fereidani · textwebappsphp
https://www.exploit-db.com/exploits/4973

This is a writeup describing a file disclosure vulnerability in Siteman v1.1.9. The vulnerability allows an attacker to read arbitrary files by manipulating the 'cat' parameter in the URL.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Siteman v1.1.9
No auth needed
Prerequisites: Access to the target web application
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/4973
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/27422

Scores

EPSS 0.0281
EPSS Percentile 84.7%

Details

CWE
CWE-22
Status published
Products (1)
siteman/siteman 1.1.9
Published Jan 25, 2008
Tracked Since Feb 18, 2026