cpe:/a:adminnewstools:admin_news_tools:2.5 CVE-2009-2557 2009-07-21T13:30:00.187-04:00 2017-09-18T21:29:12.437-04:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-07-21T13:27:00.000-04:00 BUGTRAQ 20090715 Admin News Tools 2.5 Remote File Download Vulnerability SECUNIA 35842 OSVDB 55856 EXPLOIT-DB 9153 Directory traversal vulnerability in system/download.php in Admin News Tools 2.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the fichier parameter.