How severe is CVE-2007-6214?

The severity of CVE-2007-6214 has not been assessed with CVSS v3.

CVE-2007-6214

Name: learnloop
Author: learnloop

NONE

Directory traversal vulnerability in include/file_download.php in LearnLoop 2.0 beta7 allows remote attackers to read arbitrary files via a .. (dot dot) in the sFilePath parameter. NOTE: exploitation

发布于: 12/4/2007更新于: 4/9/2025

描述

Directory traversal vulnerability in include/file_download.php in LearnLoop 2.0 beta7 allows remote attackers to read arbitrary files via a .. (dot dot) in the sFilePath parameter. NOTE: exploitation requires that the product is configured, but has zero files in the database.

AI分析AI驱动

受影响产品

learnlooplearnloop

2.0_beta7

描述

AI分析AI驱动

受影响产品

可用漏洞利用 (1)

LearnLoop 2.0beta7 - 'sFilePath' Remote File Disclosure

参考资料