CyberSec.Space Logo
返回 CVE 浏览器

CVE-2007-2200

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0690%
EPSS Percentile21.71th
Published2007年4月24日
Last Modified2026年4月23日

Vulnerability Description

Directory traversal vulnerability in navigator/navigator_ok.php in Pagode 0.5.8 allows remote attackers to read and possibly delete arbitrary files via a .. (dot dot) in the asolute parameter.

Affected Platforms (CPE)

📦
Pagode

Pagode

= 0.5.8

References & Advisories

🔗 http://osvdb.org/35311
🔗 http://osvdb.org/35312
🔗 http://secunia.com/advisories/24992
🔗 http://www.securityfocus.com/bid/23617
🔗 http://www.vupen.com/english/advisories/2007/1512
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/33848
🔗 https://www.exploit-db.com/exploits/3783
🔗 http://osvdb.org/35311

相关漏洞威胁

CVE-2007-195910.0

Unspecified vulnerability in the process_cmdent function in command.cpp in TinyMUX before 2.4 has unknown impact and attack vector...

CVE-2007-005710.0

Cisco Clean Access (CCA) 3.6.x through 3.6.4.2 and 4.0.x through 4.0.3.2 does not properly configure or allow modification of a sh...

CVE-2007-049610.0

PHP remote file inclusion vulnerability in lib/nl/nl.php in Neon Labs Website (nlws) 3.2 and earlier allows remote attackers to ex...

CVE-2007-010010.0

The Perforce client does not restrict the set of files that it overwrites upon receiving a request from the server, which allows r...