CVE-2007-0349

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2007-0349
Directory traversal vulnerability in upgrade.php in nicecoder.com INDEXU 5.x allows remote attackers to include arbitrary local files via a .. (dot dot) in the gateway parameter.

5.0 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References
Link Resource
http://osvdb.org/45533
https://exchange.xforce.ibmcloud.com/vulnerabilities/31539
http://www.securityfocus.com/archive/1/457079/100/0/threaded
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

cpe:2.3:a:nicecoder:indexu:*:*:*:*:*:*:*:*
Information

Published : 2007-01-18 16:28

Updated : 2018-10-16 09:32

NVD link : CVE-2007-0349

Mitre link : CVE-2007-0349

JSON object : View

CWE
NVD-CWE-Other
Advertisement

dedicated server usa
Products Affected

nicecoder

  • indexu