Vulnerabilities > CVE-2007-4028 - Unspecified vulnerability in Webspell 4.01.02
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Absolute path traversal vulnerability in index.php in Webspell 4.01.02 allows remote attackers to include and execute arbitrary local files via a full pathname in the site parameter. NOTE: some of these details are obtained from third party information.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://osvdb.org/37516
- http://osvdb.org/37516
- http://secunia.com/advisories/26172
- http://secunia.com/advisories/26172
- http://securityreason.com/securityalert/2927
- http://securityreason.com/securityalert/2927
- http://www.securityfocus.com/archive/1/474416/100/0/threaded
- http://www.securityfocus.com/archive/1/474416/100/0/threaded
- http://www.securityfocus.com/bid/25012
- http://www.securityfocus.com/bid/25012