cpe:/a:articlefriendly:article_friendly:5.14:-:pro CVE-2010-2136 2010-06-02T14:30:01.163-04:00 2017-08-16T21:32:37.743-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2010-06-03T11:56:00.000-04:00 BID 38461 SECUNIA 38715 OSVDB 62624 XF articlefriendly-index-file-include(56598) MISC http://www.packetstormsecurity.com/1002-exploits/articlefriendly-lfi.txt Directory traversal vulnerability in admin/index.php in Article Friendly, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.