CVE-2010-3606
NetArt MEDIA Real Estate Portal 2.0 - Path Traversal via Folder or Action Parameter
Title source: llmDescription
Multiple directory traversal vulnerabilities in AGENTS/index.php in NetArt MEDIA Real Estate Portal 2.0 allow remote emote attackers to include and execute arbitrary local files via directory traversal sequences in the (1) folder and (2) action parameters.
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/68062
Various Sources x_refsource_misc
http://pridels-team.blogspot.com/2010/09/netartmedia-real-estate-portal-v20-xss.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/43266
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/41377
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/61867
Scores
EPSS
0.0111
EPSS Percentile
62.0%
Details
CWE
CWE-22
Status
published
Products (1)
netartmedia/real_estate_portal
2.0
Published
Sep 24, 2010
Tracked Since
Feb 18, 2026