CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Tumusika Evolution: >> Tumusika Evolution >> 1.7r5 Security Vulnerabilities

CVE-2007-6221

TuMusika Evolution 1.7R5 allows remote attackers to obtain configuration information via a direct request to phpinfo.php, which calls the phpinfo function. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CVSS Score

7.8

EPSS Score

0.028

Published

2007-12-04

CVE-2007-6188

Multiple directory traversal vulnerabilities in TuMusika Evolution 1.7R5 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter to (1) languages_n.php, (2) languages_f.php, or (3) languages.php in inc/; and (4) allow remote attackers to read arbitrary local files via a .. (dot dot) in the uri parameter to frames/nogui/sc_download.php.

CVSS Score

7.5

EPSS Score

0.102

Published

2007-11-30

Page 1

Vulnerabilities

Vulnerable Software

Tumusika Evolution: >> Tumusika Evolution >> 1.7r5 Security Vulnerabilities

Products

Pricing

Contact Us