Vulnerabilities > CVE-2007-4092 - Directory Traversal vulnerability in iFoto
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Directory traversal vulnerability in index.php in iFoto 1.0.1 and earlier allows remote attackers to list arbitrary directories, and possibly download arbitrary photos, via a .. (dot dot) in the dir parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | iFoto 1.0 Index.PHP Directory Traversal Vulnerability. CVE-2007-4092 . Webapps exploit for php platform |
id | EDB-ID:30389 |
last seen | 2016-02-03 |
modified | 2007-07-25 |
published | 2007-07-25 |
reporter | Lostmon |
source | https://www.exploit-db.com/download/30389/ |
title | iFoto 1.0 Index.PHP Directory Traversal Vulnerability |