CVE-2007-5103 in Wordsmithinformation

Résumé (Anglaise)

Directory traversal vulnerability in config.inc.php in Wordsmith 1.0 RC1, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the _path parameter.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Réserver

26/09/2007

Divulgation

26/09/2007

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
38970	Wordsmith config.inc.php directory traversal	22	Preuve de concept	Non défini	CVE-2007-5103

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PrécédentAperçuSuivant ▸

Might our Artificial Intelligence support you?

Check our Alexa App!