EDB-4696
webappsphpVERIFIED
SerWeb 2.0.0 dev1 2007-02-20 - Multiple Local/Remote File Inclusion Vulnerabilities
CVE-2007-6290CVE-2007-6289
GoLd_M12/6/2007
CVE-2007-6290
NONEMultiple directory traversal vulnerabilities in js/get_js.php in SERWeb 2.0.0 dev1 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) mod and (2) js parameters.
Опубликовано: 12/10/2007Обновлено: 4/9/2025
Описание
Multiple directory traversal vulnerabilities in js/get_js.php in SERWeb 2.0.0 dev1 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) mod and (2) js parameters.
ИИ-АнализНа базе ИИ
Затронутые продукты
iptelserweb
2.0.0dev1
Доступные эксплойты (1)
Ссылки
- http://osvdb.org/39220
- http://www.securityfocus.com/bid/26747Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38907
- https://www.exploit-db.com/exploits/4696
- http://osvdb.org/39220
- http://www.securityfocus.com/bid/26747Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38907
- https://www.exploit-db.com/exploits/4696