cpe:/a:portail_web_php:portail_web_php:2.5.1.1 CVE-2007-0700 2007-02-03T19:28:00.000-05:00 2017-10-10T21:31:38.597-04:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2007-02-05T23:00:00.000-05:00 VIM 20070201 Fwd: php web portail [remote file include & local file include] BUGTRAQ 20070201 php web portail [remote file include & local file include] VIM 20070202 Local File Inclusion inconclusive in PwP (was Fwd: php web portail [remote file include & local fileinclude]) BID 22361 BID 27962 OSVDB 33634 EXPLOIT-DB 5182 XF portailwebphp-index-file-include(32115) Directory traversal vulnerability in index.php in Guernion Sylvain Portail Web Php (aka Gsylvain35 Portail Web, PwP) allows remote attackers to read arbitrary files via a .. (dot dot) in the page parameter. NOTE: this issue was later reported for 2.5.1.1.