VYPR
Unrated severityNVD Advisory· Published Aug 26, 2009· Updated Jun 16, 2026

CVE-2008-7090

CVE-2008-7090

Description

Multiple directory traversal vulnerabilities in Pligg 9.9 and earlier allow remote attackers to (1) determine the existence of arbitrary files via a .. (dot dot) in the $tb_url variable in trackback.php, or (2) include arbitrary files via a .. (dot dot) in the template parameter to settemplate.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Pligg/Pligg CMS3 versions
    cpe:2.3:a:pligg:pligg_cms:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:pligg:pligg_cms:*:*:*:*:*:*:*:*range: <=9.9
    • cpe:2.3:a:pligg:pligg_cms:9.5:*:*:*:*:*:*:*
    • (no CPE)range: <=9.9

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.