CVE-2009-1948 | Unclassified NewsBoard 1.6.4 forum.php GLOBALS[UTE][__tplCollection][a][file] path traversal (EDB-8841 / XFDB-50878)
A vulnerability, which was classified as problematic, was found in Unclassified NewsBoard 1.6.4. Affected is an unknown function of the file forum.php. The manipulation of the argument GLOBALS[UTE][__tplCollection][a][file] leads to path traversal.
This vulnerability is traded as CVE-2009-1948. It is possible to launch the attack remotely. Furthermore, there is an exploit available.