Directory traversal vulnerability in functions.php in PhpNewsManager 1.46 allows remote attackers to retrieve arbitrary files via .. (dot dot) sequences in the clang parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Phpnewsmanager | Skintech | 1.36 (including) | 1.36 (including) |