Vulnerabilities > CVE-2007-1451 - Remote Security vulnerability in Guppy 4.0

CVSS 6.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

guppy

NVD

Published: 2007-03-14

Updated: 2018-10-16

Summary

GuppY 4.0 allows remote attackers to delete arbitrary files via a direct request to install/install.php, then selecting "Installation propre" (cleanup.php) and then "Suppression des fichiers d'installation" (delete.php).

Vulnerable Configurations

Part	Description	Count
Application	Guppy Guppy Guppy 4.0	1

References

http://forums.avenir-geopolitique.net/viewtopic.php?t=2728
http://osvdb.org/35085
http://securityreason.com/securityalert/2433
http://www.securityfocus.com/archive/1/462584/100/0/threaded