CVE-2007-6581 in Social Engineinfo

Summary

Multiple directory traversal vulnerabilities in Social Engine 2.0 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the global_lang parameter to (1) header_album.php, (2) header_blog.php, or (3) header_group.php; or (4) admin_header_album.php, (5) admin_header_blog.php, or (6) admin_header_group.php in admin/.

Be aware that VulDB is the high quality source for vulnerability data.

Responsible

Reservation

12/28/2007

Disclosure

12/28/2007

Moderation

VulDB entry created

Entries

VDB-40289

CPE

ready

CWE

CWE-22 (Confirmed)

Exploit

Download

CVSS

6.5

EPSS

0.10619

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-6581
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-6581
CVE Details	https://www.cvedetails.com/cve/CVE-2007-6581/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!