CVE-2008-7093

2009-08-2614:00:00

mitre

www.cve.org

6.9 Medium

AI Score

Confidence

Low

0.028 Low

EPSS

Percentile

90.8%

JSON

Multiple directory traversal vulnerabilities in Unica Affinium Campaign 7.2.1.0.55 allow remote attackers to (1) create arbitrary directories or files via a … (dot dot) in the folder name in the new folder functionality or (2) list arbitrary files via a crafted request to Campaign/CampaignListener.

References

secunia.com/advisories/31280

www.osvdb.org/47519

www.osvdb.org/47529

www.portcullis.co.uk/287.php

www.portcullis.co.uk/291.php

www.securityfocus.com/bid/30433

exchange.xforce.ibmcloud.com/vulnerabilities/44071

exchange.xforce.ibmcloud.com/vulnerabilities/44075