Vulnerabilities > CVE-2007-0821 - Remote File Include vulnerability in Cedric Claire Portailphp 2

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
cedric
exploit available
NVD
Published: 2007-02-07
Updated: 2008-11-15

Summary

Multiple directory traversal vulnerabilities in Cedric CLAIRE PortailPhp 2 allow remote attackers to read arbitrary files via a .. (dot dot) in the chemin parameter to (1) mod_news/index.php or (2) mod_news/goodies.php. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Configurations

Part Description Count
Application
Cedric
1

Exploit-Db

  • descriptionPortailPHP 2 mod_news/goodies.php chemin Parameter Traversal Arbitrary File Access. CVE-2007-0821. Webapps exploit for php platform
    idEDB-ID:29563
    last seen2016-02-03
    modified2007-02-03
    published2007-02-03
    reporterlaurent gaffie
    sourcehttps://www.exploit-db.com/download/29563/
    titlePortailPHP 2 mod_news/goodies.php chemin Parameter Traversal Arbitrary File Access
  • descriptionPortailPHP 2 mod_news/index.php chemin Parameter Traversal Arbitrary File Access. CVE-2007-0821. Webapps exploit for php platform
    idEDB-ID:29562
    last seen2016-02-03
    modified2007-02-03
    published2007-02-03
    reporterlaurent gaffie
    sourcehttps://www.exploit-db.com/download/29562/
    titlePortailPHP 2 mod_news/index.php chemin Parameter Traversal Arbitrary File Access

References