Vulnerabilities > CVE-2007-6230 - Unspecified vulnerability in Rayzz Script 2.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN rayzz
exploit available
Summary
Directory traversal vulnerability in common/classes/class_HeaderHandler.lib.php in Rayzz Script 2.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the CFG[site][project_path] parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Rayzz Script 2.0 Remote / Local File Inclusion Vulnerabilities. CVE-2007-6229,CVE-2007-6230. Webapps exploit for php platform |
| file | exploits/php/webapps/4685.txt |
| id | EDB-ID:4685 |
| last seen | 2016-01-31 |
| modified | 2007-12-01 |
| platform | php |
| port | |
| published | 2007-12-01 |
| reporter | Crackers_Child |
| source | https://www.exploit-db.com/download/4685/ |
| title | Rayzz Script 2.0 - Remote / Local File Inclusion Vulnerabilities |
| type | webapps |