How severe is CVE-2007-6214?

The severity of CVE-2007-6214 has not been assessed with CVSS v3.

CVE-2007-6214

Name: learnloop
Author: learnloop

NONE

Directory traversal vulnerability in include/file_download.php in LearnLoop 2.0 beta7 allows remote attackers to read arbitrary files via a .. (dot dot) in the sFilePath parameter. NOTE: exploitation

Published: 12/4/2007Updated: 4/9/2025

Description

Directory traversal vulnerability in include/file_download.php in LearnLoop 2.0 beta7 allows remote attackers to read arbitrary files via a .. (dot dot) in the sFilePath parameter. NOTE: exploitation requires that the product is configured, but has zero files in the database.

AI AnalysisPowered by AI

Affected Products

learnlooplearnloop

2.0_beta7

Description

AI AnalysisPowered by AI

Affected Products

Available Exploits (1)

LearnLoop 2.0beta7 - 'sFilePath' Remote File Disclosure

References