Lucene search

[email protected]CVE-2007-4457

HistoryAug 21, 2007 - 9:17 p.m.

CVE-2007-4457

2007-08-2121:17:00

CWE-22

[email protected]

web.nvd.nist.gov

cve-2007-4457

directory traversal

dalai forum 1.1

security vulnerability

nvd

7.9 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.022 Low

EPSS

Percentile

89.4%

JSON

Directory traversal vulnerability in forumreply.php in Dalai Forum 1.1 allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the chemin parameter.

CPENameOperatorVersion
florian_mahieu:dalai_forumflorian mahieu dalai forumeq1.1

CPE	Name	Operator	Version
florian_mahieu:dalai_forum	florian mahieu dalai forum	eq	1.1

References

osvdb.org/37831

www.securityfocus.com/archive/1/477238/100/0/threaded

www.securityfocus.com/bid/25361

exchange.xforce.ibmcloud.com/vulnerabilities/36140

7.9 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.022 Low

EPSS

Percentile

89.4%

JSON

Related for CVE-2007-4457

prion1