Lucene search
HistoryApr 08, 2008 - 6:05 p.m.
CVE-2008-1702
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.013
Percentile
86.2%
Absolute path traversal vulnerability in dload.php in the my_gallery 2.3 plugin for e107 allows remote attackers to obtain sensitive information via a full pathname in the file parameter. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
e107e107
e107my_galleryMatch2.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| e107 | e107 | * | cpe:2.3:a:e107:e107:*:*:*:*:*:*:*:* |
| e107 | my_gallery | 2.3 | cpe:2.3:a:e107:my_gallery:2.3:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
e107 Plugin My_Gallery 2.3 - Arbitrary File Download
2008-03-25 00:00:00
prion
prion
Path traversal
2008-04-08 18:05:00
nessus
nessus
cve
cve
CVE-2008-1702
2008-04-08 18:05:00
checkpoint_advisories
checkpoint_advisories
E107 My_Gallery Plugin Absolute Path Traversal (CVE-2008-1702)
2014-11-10 00:00:00
cvelist
cvelist
CVE-2008-1702
2008-04-08 18:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.013
Percentile
86.2%
Related for NVD:CVE-2008-1702