Lucene search

K
cve[email protected]CVE-2007-1455
HistoryMar 14, 2007 - 6:19 p.m.

CVE-2007-1455

2007-03-1418:19:00
web.nvd.nist.gov
22
cve
2007
1455
path traversal
fantastico
cpanel
security vulnerability
nvd

7 High

AI Score

Confidence

Low

9 High

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.016 Low

EPSS

Percentile

87.4%

Multiple absolute path traversal vulnerabilities in Fantastico, as used with cPanel 10.x, allow remote authenticated users to include and execute arbitrary local files via (1) the userlanguage parameter to includes/load_language.php or (2) the fantasticopath parameter to includes/mysqlconfig.php and certain other files.

Affected configurations

NVD
Node
cpanel-hostfantastico_de_luxe

7 High

AI Score

Confidence

Low

9 High

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.016 Low

EPSS

Percentile

87.4%

Related for CVE-2007-1455