CVE-2008-2534

Fkrauthan Phoenix View Cms - Path Traversal

Title source: rule

Description

Directory traversal vulnerability in admin/admin_frame.php in Phoenix View CMS Pre Alpha2 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the ltarget parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED

by tw8 · textwebappsphp

https://www.exploit-db.com/exploits/5578

View Code ZIP pw:eip

References (2)

Core 2

Core References

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/5578

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/42315

Scores

EPSS 0.0290

EPSS Percentile 86.4%

Details

CWE

CWE-22

Status published

Products (1)

fkrauthan/phoenix_view_cms 2-pre-alpha

Published Jun 03, 2008

Tracked Since Feb 18, 2026