CVE

Id
29701  
CVE No.
CVE-2007-6344  
Status
Candidate  
Description
Directory traversal vulnerability in modules/cms/index.php in Mcms Easy Web Make 1.3, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the template parameter.  
Phase
Assigned (20071213)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
313229 29701 CVE-2007-6344 MILW0RM:4719  View
313230 29701 CVE-2007-6344 URL:http://www.milw0rm.com/exploits/4719  View
313231 29701 CVE-2007-6344 BID:26821  View
313232 29701 CVE-2007-6344 URL:http://www.securityfocus.com/bid/26821  View
313233 29701 CVE-2007-6344 VUPEN:ADV-2007-4209  View
313234 29701 CVE-2007-6344 URL:http://www.vupen.com/english/advisories/2007/4209  View
313235 29701 CVE-2007-6344 OSVDB:39139  View
313236 29701 CVE-2007-6344 URL:http://osvdb.org/39139  View
313237 29701 CVE-2007-6344 SECUNIA:28053  View
313238 29701 CVE-2007-6344 URL:http://secunia.com/advisories/28053  View
313239 29701 CVE-2007-6344 XF:mcmseasywebmake-index-file-include(38976)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
52153 JVNDB-2007-000816 Rainboard におけるクロスサイトスクリプティングの脆弱性 掲示板ソフトウェアである Rainboard にはクロスサイトスクリプティングの脆弱性が存在します。 CVE-2007-6346 29701 4.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-000816.html  View