Vulnerability Details CVE-2007-0118
Multiple absolute path traversal vulnerabilities in EditTag 1.2 allow remote attackers to read arbitrary files via an absolute pathname in the file parameter to (1) edittag.cgi, (2) edittag.pl, (3) edittag_mp.cgi, or (4) edittag_mp.pl.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.148
EPSS Ranking 94.3%
CVSS Severity
CVSS v2 Score 4.3
References
- http://osvdb.org/33393
- http://osvdb.org/33394
- http://osvdb.org/33395
- http://osvdb.org/33396
- http://secunia.com/advisories/7950
- http://www.securityfocus.com/archive/1/456055/100/0/threaded
- http://www.securityfocus.com/bid/21890
- http://osvdb.org/33393
- http://osvdb.org/33394
- http://osvdb.org/33395
- http://osvdb.org/33396
- http://secunia.com/advisories/7950
- http://www.securityfocus.com/archive/1/456055/100/0/threaded
- http://www.securityfocus.com/bid/21890