Vulnerabilities > CVE-2007-6214 - Unspecified vulnerability in Learnloop 2.0Beta7

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

learnloop

exploit available

NVD

Published: 2007-12-04

Updated: 2024-11-21

Summary

Directory traversal vulnerability in include/file_download.php in LearnLoop 2.0 beta7 allows remote attackers to read arbitrary files via a .. (dot dot) in the sFilePath parameter. NOTE: exploitation requires that the product is configured, but has zero files in the database.

Vulnerable Configurations

Part	Description	Count
Application	Learnloop Learnloop Learnloop 2.0_Beta7	1

Exploit-Db

description	LearnLoop 2.0beta7 (sFilePath) Remote File Disclosure Vulnerability. CVE-2007-6214. Webapps exploit for php platform
file	exploits/php/webapps/4680.txt
id	EDB-ID:4680
last seen	2016-01-31
modified	2007-11-29
platform	php
port
published	2007-11-29
reporter	GoLd_M
source	https://www.exploit-db.com/download/4680/
title	LearnLoop 2.0beta7 sFilePath Remote File Disclosure Vulnerability
type	webapps

Summary

Vulnerable Configurations

Exploit-Db

References