CVE-2007-0616 in ZenPhotoinfo

Summary

Directory traversal vulnerability in zen/template-functions.php in zenphoto 1.0.4 up to 1.0.6 allows remote attackers to list arbitrary directories via ".." sequences in the album parameter to index.php.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

01/30/2007

Disclosure

01/31/2007

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-22

CVSS

7.5

EPSS

0.00603

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-0616
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-0616
CVE Details	https://www.cvedetails.com/cve/CVE-2007-0616/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!