CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Prion•added 2008/09/30 6:15 p.m.•11 views

Directory traversal

Directory traversal vulnerability in TalkBack 2.3.6 and 2.3.6.4 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the language parameter to comments.php, a different vector than CVE-2008-3371...

7.5CVSS7.3AI score0.08373EPSS

Exploits2References6Affected Software1

CVE•added 2008/07/30 5:0 p.m.•42 views

CVE-2008-3371

CVE-2008-3371 - Vulnerability in TalkBack 2.3.5 and earlier than 2.3.6.2 where the installer’s language parameter in install/help.php can be manipulated to perform directory traversal, allowing remote inclusion and execution of local files. The issue is a classic local file inclusion due to impro...

7.5CVSS7.2AI score0.08373EPSS

Exploits1References9Affected Software1

Cvelist•added 2008/07/30 5:0 p.m.•17 views

CVE-2008-3371

Directory traversal vulnerability in install/help.php in TalkBack 2.3.5, and other versions before 2.3.6.2, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language parameter...

7AI score0.08373EPSS

Exploits1References9