CVE-2007-6185 in CMS
摘要 (英语)
Directory traversal vulnerability in users/files.php in Eurologon CMS allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter in a download action, as demonstrated by a certain PHP file containing database credentials.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
预定
2007-11-29
披露
2007-11-29
状态
已确认
条目
VulDB provides additional information and datapoints for this CVE:
| 标识符 | 漏洞 | CWE | 可利用 | 对策 | CVE |
|---|---|---|---|---|---|
| 39885 | Eurologon CMS files.php 目录遍历 | 22 | 概念验证 | 未定义 | CVE-2007-6185 |