cpe:/a:insanevisions:onecms:2.5 CVE-2008-2482 2008-05-28T11:32:00.000-04:00 2017-09-28T21:31:11.303-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-05-28T13:25:00.000-04:00 ALLOWS_OTHER_ACCESS BUGTRAQ 20080523 [DSECRG-08-025] Local File Include in OneCMS 2.5 BID 29374 SECUNIA 30378 EXPLOIT-DB 5669 VUPEN ADV-2008-1648 XF onecms-installmod-file-include(42600) Directory traversal vulnerability in install_mod.php in insanevisions OneCMS 2.5 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the load parameter in a go action.