CVE-2007-1509

2007-03-2010:00:00

mitre

www.cve.org

6.6 Medium

AI Score

Confidence

Low

0.02 Low

EPSS

Percentile

88.9%

JSON

Directory traversal vulnerability in enkrypt.php in Sascha Schroeder krypt (aka Holtstraeter Rot 13) allows remote attackers to read arbitrary files via a … (dot dot) in the datei parameter.

References

osvdb.org/34089

securityreason.com/securityalert/2458

www.securityfocus.com/archive/1/463011/100/0/threaded

www.securityfocus.com/bid/22997

exchange.xforce.ibmcloud.com/vulnerabilities/33027