Vulnerabilities > CVE-2007-0118 - Directory Traversal vulnerability in Edittag 1.2
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Multiple absolute path traversal vulnerabilities in EditTag 1.2 allow remote attackers to read arbitrary files via an absolute pathname in the file parameter to (1) edittag.cgi, (2) edittag.pl, (3) edittag_mp.cgi, or (4) edittag_mp.pl.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description EditTag 1.2 edittag.pl file Variable Arbitrary File Disclosure. CVE-2007-0118. Webapps exploit for cgi platform id EDB-ID:29391 last seen 2016-02-03 modified 2007-01-05 published 2007-01-05 reporter NetJackal source https://www.exploit-db.com/download/29391/ title EditTag 1.2 edittag.pl file Variable Arbitrary File Disclosure description EditTag 1.2 edittag_mp.cgi file Variable Arbitrary File Disclosure. CVE-2007-0118. Webapps exploit for cgi platform id EDB-ID:29392 last seen 2016-02-03 modified 2007-01-05 published 2007-01-05 reporter NetJackal source https://www.exploit-db.com/download/29392/ title EditTag 1.2 edittag_mp.cgi file Variable Arbitrary File Disclosure description EditTag 1.2 edittag_mp.pl file Variable Arbitrary File Disclosure. CVE-2007-0118. Webapps exploit for cgi platform id EDB-ID:29393 last seen 2016-02-03 modified 2007-01-05 published 2007-01-05 reporter NetJackal source https://www.exploit-db.com/download/29393/ title EditTag 1.2 edittag_mp.pl file Variable Arbitrary File Disclosure description EditTag 1.2 edittag.cgi file Variable Arbitrary File Disclosure. CVE-2007-0118 . Webapps exploit for cgi platform id EDB-ID:29390 last seen 2016-02-03 modified 2007-01-05 published 2007-01-05 reporter NetJackal source https://www.exploit-db.com/download/29390/ title EditTag 1.2 edittag.cgi file Variable Arbitrary File Disclosure