Filtered by vendor Pntresmailer Subscriptions
Filtered by product Pntresmailer Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2004-1206 1 Pntresmailer 1 Pntresmailer 2024-11-20 N/A
Directory traversal vulnerability in codebrowserpntm.php in pnTresMailer 6.0.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the filetodownload parameter.
CVE-2004-1205 1 Pntresmailer 1 Pntresmailer 2024-11-20 N/A
codebrowserpntm.php in PnTresMailer 6.03 allows remote attackers to gain sensitive information via an invalid filetohighlight parameter, which reveals the full path in an error message.