CVE-2009-3538
Clear Content 1.1 - Path Traversal via Thumb.php URL Parameter
Title source: llmDescription
Directory traversal vulnerability in thumb.php in Clear Content 1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the url parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
References (2)
Core 2
Core References
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/35726
Exploit vdb-entry
x_refsource_osvdb
http://www.osvdb.org/55743
Scores
EPSS
0.0157
EPSS Percentile
72.3%
Details
CWE
CWE-22
Status
published
Products (1)
allisclear/clear_content
1.1
Published
Oct 02, 2009
Tracked Since
Feb 18, 2026