Vulnerability Details CVE-2007-3936
Directory traversal vulnerability in admin/filebrowser.asp in A-shop 0.70 and earlier, and possibly 0.71, allows remote attackers to delete arbitrary files via unspecified filename references in the delfiles parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.024
EPSS Ranking 84.1%
CVSS Severity
CVSS v2 Score 6.4
References
- http://secunia.com/advisories/26126
- http://www.securityfocus.com/bid/24971
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35483
- https://www.exploit-db.com/exploits/4198
- http://secunia.com/advisories/26126
- http://www.securityfocus.com/bid/24971
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35483
- https://www.exploit-db.com/exploits/4198