CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-0349

Directory traversal vulnerability in upgrade.php in nicecoder.com INDEXU 5.x allows remote attackers to include arbitrary local files via a .. (dot dot) in the gateway parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.2%

CVSS Severity

CVSS v2 Score 5.0

References

http://osvdb.org/45533
http://www.securityfocus.com/archive/1/457079/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/31539
http://osvdb.org/45533
http://www.securityfocus.com/archive/1/457079/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/31539

Products affected by CVE-2007-0349

Nicecoder » Indexu » Version: Any

cpe:2.3:a:nicecoder:indexu:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-0349

Products

Pricing

Contact Us