cpe:/a:skybluecanvas:skybluecanvas:1.1 CVE-2009-2116 2009-06-18T17:30:00.360-04:00 2009-06-22T00:00:00.000-04:00 4.0 NETWORK LOW SINGLE_INSTANCE PARTIAL NONE NONE http://nvd.nist.gov 2009-06-19T13:35:00.000-04:00 BUGTRAQ 20090612 [InterN0T] SkyBlueCanvas 1.1 r237 - Multiple Vulnerabilities SECUNIA 35478 MISC http://forum.intern0t.net/intern0t-advisories/1120-intern0t-skybluecanvas-1-1-r237-multiple-vulnerabilities.html Directory traversal vulnerability in admin.php in SkyBlueCanvas 1.1 r237 allows remote authenticated administrators to list directory contents via a .. (dot dot) in the dir parameter.