How severe is CVE-2007-6290?

The severity of CVE-2007-6290 has not been assessed with CVSS v3.

CVE-2007-6290

Name: serweb
Author: iptel

NONE

Multiple directory traversal vulnerabilities in js/get_js.php in SERWeb 2.0.0 dev1 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) mod and (2) js parameters.

Publicado: 12/10/2007Actualizado: 4/9/2025

Descripción

Multiple directory traversal vulnerabilities in js/get_js.php in SERWeb 2.0.0 dev1 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) mod and (2) js parameters.

Análisis IAImpulsado por IA

Productos Afectados

iptelserweb

2.0.0dev1

Exploits Disponibles (1)

EDB-4696

webappsphpVERIFIED

SerWeb 2.0.0 dev1 2007-02-20 - Multiple Local/Remote File Inclusion Vulnerabilities

CVE-2007-6290CVE-2007-6289

GoLd_M12/6/2007

Referencias

http://osvdb.org/39220
http://www.securityfocus.com/bid/26747
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/38907
https://www.exploit-db.com/exploits/4696
http://osvdb.org/39220
http://www.securityfocus.com/bid/26747
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/38907
https://www.exploit-db.com/exploits/4696