Lucene search

[email protected]CVE-2007-2483

HistoryMay 03, 2007 - 5:19 p.m.

CVE-2007-2483

2007-05-0317:19:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve

2007

2483

directory traversal

wp-table

plugin

wordpress

register_globals

7.4 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.017 Low

EPSS

Percentile

87.8%

JSON

Directory traversal vulnerability in js/wptable-button.php in the wp-Table 1.43 and earlier plugin for WordPress, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via the wpPATH parameter.

CPENameOperatorVersion
ruben_boelinger:wp-tableruben boelinger wp-tablele1.43

CPE	Name	Operator	Version
ruben_boelinger:wp-table	ruben boelinger wp-table	le	1.43

References

advisories.echo.or.id/adv/adv82-K-159-2007.txt

alexrabe.boelinger.com/

osvdb.org/37297

secunia.com/advisories/25063

www.securityfocus.com/archive/1/467363/100/0/threaded

www.vupen.com/english/advisories/2007/1614

exchange.xforce.ibmcloud.com/vulnerabilities/33989

www.exploit-db.com/exploits/3824

7.4 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.017 Low

EPSS

Percentile

87.8%

JSON

Related for CVE-2007-2483

prion1 patchstack1 wpvulndb1