Unrated severityNVD Advisory· Published Dec 8, 2005· Updated Apr 16, 2026

CVE-2005-4095

Description

Directory traversal vulnerability in connector.php in the fckeditor2rc2 addon in DoceboLMS 2.0.4 allows remote attackers to list arbitrary files and directories via ".." sequences in the Type parameter in a GetFoldersAndFiles command.

Affected products

Docebo/Docebolms
cpe:2.3:a:docebolms:docebolms:2.0.4:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

rgod.altervista.org/docebo204_xpl.htmlnvdExploitVendor Advisory
secunia.com/advisories/17896nvdExploitVendor Advisory
www.securityfocus.com/bid/15742nvdExploit
secunia.com/advisories/1015308nvdVendor Advisory
securitytracker.com/idnvd
www.osvdb.org/21464nvd
www.vupen.com/english/advisories/2005/2771nvd
exchange.xforce.ibmcloud.com/vulnerabilities/23518nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.009
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000