Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026
CVE-2004-1496
CVE-2004-1496
Description
Directory traversal vulnerability in Web Forums Server 1.6 and 2.0 Power Pack allows remote attackers to read arbitrary files via a URL containing (1) "..\" (dot dot backslash), (2) "../" (dot dot slash), (3) "/%2E%2E%5C" (encoded dot dot backslash), or (4) "%2E%2E%2F" (encoded dot dot slash).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:minihttpserver.net:web_forums_server:1.6:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:minihttpserver.net:web_forums_server:1.6:*:*:*:*:*:*:*
- cpe:2.3:a:minihttpserver.net:web_forums_server:2.0_power_pack:*:*:*:*:*:*:*
- Range: <= 2.0 Power Pack
Patches
Vulnerability mechanics
References
1- marc.infonvd
News mentions
0No linked articles in our index yet.