Lucene search

[email protected]CVE-2007-5321

HistoryOct 09, 2007 - 10:17 p.m.

CVE-2007-5321

2007-10-0922:17:00

CWE-22

CWE-94

[email protected]

web.nvd.nist.gov

cve-2007-5321

verlihub

control panel

vhcp

vulnerability

directory traversal

remote attackers

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.8 Medium

AI Score

Confidence

High

0.041 Low

EPSS

Percentile

92.2%

JSON

Directory traversal vulnerability in index.php in Verlihub Control Panel (VHCP) 1.7 and earlier allows remote attackers to include arbitrary files via a … (dot dot) in the page parameter.

Affected configurations

NVD

Node

verlihub-projectverlihub_control_panelMatch1.7

CPENameOperatorVersion
verlihub-project:verlihub_control_panelverlihub-project verlihub control paneleq1.7

CPE	Name	Operator	Version
verlihub-project:verlihub_control_panel	verlihub-project verlihub control panel	eq	1.7

References

osvdb.org/37612

secunia.com/advisories/27113

www.securityfocus.com/bid/25968

www.vupen.com/english/advisories/2007/3421

exchange.xforce.ibmcloud.com/vulnerabilities/37002

www.exploit-db.com/exploits/4494

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.8 Medium

AI Score

Confidence

High

0.041 Low

EPSS

Percentile

92.2%

JSON

Related for CVE-2007-5321

nvd1 cvelist1 prion1