CVE

Id
26608  
CVE No.
CVE-2007-3251  
Status
Candidate  
Description
Multiple directory traversal vulnerabilities in e-Vision CMS 2.02 and earlier allow remote attackers to (1) include and execute arbitrary local files via a .. (dot dot) in the adminlang cookie to admin/functions.php or (2) read arbitrary local files via the img parameter to admin/show_img.php.  
Phase
Assigned (20070618)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
270148 26608 CVE-2007-3251 MILW0RM:4054  View
270149 26608 CVE-2007-3251 URL:http://milw0rm.com/exploits/4054  View
270150 26608 CVE-2007-3251 BID:24398  View
270151 26608 CVE-2007-3251 URL:http://www.securityfocus.com/bid/24398  View
270152 26608 CVE-2007-3251 VUPEN:ADV-2007-2123  View
270153 26608 CVE-2007-3251 URL:http://www.vupen.com/english/advisories/2007/2123  View
270154 26608 CVE-2007-3251 OSVDB:38466  View
270155 26608 CVE-2007-3251 URL:http://osvdb.org/38466  View
270156 26608 CVE-2007-3251 OSVDB:38467  View
270157 26608 CVE-2007-3251 URL:http://osvdb.org/38467  View
270158 26608 CVE-2007-3251 SECUNIA:25605  View
270159 26608 CVE-2007-3251 URL:http://secunia.com/advisories/25605  View
270160 26608 CVE-2007-3251 XF:evisioncms-functions-file-include(34792)  View
270161 26608 CVE-2007-3251 URL:http://xforce.iss.net/xforce/xfdb/34792  View
270162 26608 CVE-2007-3251 XF:evisioncms-showimg-directory-traversal(34794)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
53504 JVNDB-2007-002196 ASG におけるサービス運用妨害 (DoS) の脆弱性 Astaro Security Gateway (ASG) には、サービス運用妨害状態 (DoS) となる脆弱性が存在します。 CVE-2007-3253 26608 7.8 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-002196.html  View