Directory traversal vulnerability in productionnu2/fileuploader.php in nuBuilder 10.04.20, and possibly other versions before 10.07.12, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the dir parameter.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2010-07-23T20:00:00
Updated: 2024-08-07T02:46:48.523Z
Reserved: 2010-07-23T00:00:00
Link: CVE-2010-2850
Vulnrichment
No data.
NVD
Status : Modified
Published: 2010-07-25T02:04:13.877
Modified: 2017-08-17T01:32:50.337
Link: CVE-2010-2850
Redhat
No data.