Vulnerability Details CVE-2007-2934
Directory traversal vulnerability in skins/common.css.php in Vistered Little 1.6a allows remote attackers to read arbitrary files via a .. (dot dot) in the skin parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.035
EPSS Ranking 87.2%
CVSS Severity
CVSS v2 Score 7.8
References
- http://osvdb.org/38350
- http://www.attrition.org/pipermail/vim/2007-May/001632.html
- http://www.securityfocus.com/bid/24178
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34546
- https://www.exploit-db.com/exploits/3999
- http://osvdb.org/38350
- http://www.attrition.org/pipermail/vim/2007-May/001632.html
- http://www.securityfocus.com/bid/24178
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34546
- https://www.exploit-db.com/exploits/3999
Products affected by CVE-2007-2934
-
cpe:2.3:a:windy_road:vistered_little:1.6a