CyberSec.Space Logo
Back to CVE Browser

CVE-2007-2200

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0690%
EPSS Percentile21.71th
PublishedApr 24, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Directory traversal vulnerability in navigator/navigator_ok.php in Pagode 0.5.8 allows remote attackers to read and possibly delete arbitrary files via a .. (dot dot) in the asolute parameter.

Affected Platforms (CPE)

πŸ“¦
Pagode

Pagode

= 0.5.8

References & Advisories

πŸ”— http://osvdb.org/35311
πŸ”— http://osvdb.org/35312
πŸ”— http://secunia.com/advisories/24992
πŸ”— http://www.securityfocus.com/bid/23617
πŸ”— http://www.vupen.com/english/advisories/2007/1512
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/33848
πŸ”— https://www.exploit-db.com/exploits/3783
πŸ”— http://osvdb.org/35311

Related Vulnerabilities

CVE-2007-158710.0

templates/config/mail.tpl in Tim Soderstrom StatsDawg 0.92 allows remote attackers to execute arbitrary programs by specifying the...

CVE-2007-182310.0

T-Mobile voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailboxes, by spoofing Calling N...

CVE-2007-049610.0

PHP remote file inclusion vulnerability in lib/nl/nl.php in Neon Labs Website (nlws) 3.2 and earlier allows remote attackers to ex...

CVE-2007-195910.0

Unspecified vulnerability in the process_cmdent function in command.cpp in TinyMUX before 2.4 has unknown impact and attack vector...