CVE-2007-6188

🗓️ 30 Nov 2007 01:00:00Reported by mitreType

cve

cve🔗 web.nvd.nist.gov👁 35 Views🌐 WEB

Vulnerabilities in TuMusika Evolution 1.7R5 allow remote code execution and file read

Reporter	Title	Published	Views	Family All 3
Cvelist	CVE-2007-6188	30 Nov 200701:00	–	cvelist
NVD	CVE-2007-6188	30 Nov 200701:46	–	nvd
Prion	Directory traversal	30 Nov 200701:46	–	prion

NVD

Node

tumusika_evolution tumusika_evolutionMatch1.7r5

Source	Link
osvdb	www.osvdb.org/42451
osvdb	www.osvdb.org/42450
osvdb	www.osvdb.org/42453
securityfocus	www.securityfocus.com/bid/26631
exploit-db	www.exploit-db.com/exploits/4674
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/38720
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/38719
osvdb	www.osvdb.org/42452
secunia	www.secunia.com/advisories/27866
securityfocus	www.securityfocus.com/bid/26632

Parameter	Position	Path	Description	CWE
language	query param	inc/languages_n.php	Directory traversal via .. in the language parameter can cause inclusion/execution of arbitrary local files.	CWE-22
language	query param	inc/languages_f.php	Directory traversal via .. in the language parameter can cause inclusion/execution of arbitrary local files.	CWE-22
language	query param	inc/languages.php	Directory traversal via .. in the language parameter can cause inclusion/execution of arbitrary local files.	CWE-22
uri	query param	frames/nogui/sc_download.php	Directory traversal via .. in the uri parameter can read arbitrary local files.	CWE-22

23 Apr 2026 00:35Current

7.2High risk

Vulners AI Score7.2

CVSS 27.5

EPSS0.10286

cve-2007-6188 directory traversal tumusika evolution remote code execution nvd