How severe is CVE-2007-6290?

The severity of CVE-2007-6290 has not been assessed with CVSS v3.

CVE-2007-6290

Name: serweb
Author: iptel

NONE

Multiple directory traversal vulnerabilities in js/get_js.php in SERWeb 2.0.0 dev1 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) mod and (2) js parameters.

发布于: 12/10/2007更新于: 4/9/2025

描述

Multiple directory traversal vulnerabilities in js/get_js.php in SERWeb 2.0.0 dev1 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) mod and (2) js parameters.

AI分析AI驱动

受影响产品

iptelserweb

2.0.0dev1

可用漏洞利用 (1)

EDB-4696

webappsphpVERIFIED

SerWeb 2.0.0 dev1 2007-02-20 - Multiple Local/Remote File Inclusion Vulnerabilities

CVE-2007-6290CVE-2007-6289

GoLd_M12/6/2007

参考资料

http://osvdb.org/39220
http://www.securityfocus.com/bid/26747
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/38907
https://www.exploit-db.com/exploits/4696
http://osvdb.org/39220
http://www.securityfocus.com/bid/26747
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/38907
https://www.exploit-db.com/exploits/4696