Vulnerabilities > CVE-2007-4256 - Directory Traversal vulnerability in YNP Portal Systems 2.2.0

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
ynp
exploit available
NVD
Published: 2007-08-08
Updated: 2017-09-29

Summary

Directory traversal vulnerability in showpage.cgi in YNP Portal System 2.2.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the p parameter.

Vulnerable Configurations

Part Description Count
Application
Ynp
1

Exploit-Db

descriptionYNP Portal System 2.2.0 (showpage.cgi p) Remote File Disclosure. CVE-2007-4256. Webapps exploit for cgi platform
fileexploits/cgi/webapps/4261.txt
idEDB-ID:4261
last seen2016-01-31
modified2007-08-06
platformcgi
port
published2007-08-06
reporterGoLd_M
sourcehttps://www.exploit-db.com/download/4261/
titleYNP Portal System 2.2.0 showpage.cgi p Remote File Disclosure
typewebapps

References