CVE-2007-5811

Directory traversal vulnerability in PageTraiteDownload.php in phpMyConferences 8.0.2 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the dir parameter. NOTE: this issue is disputed for 8.0.2 by a reliable third party, who notes that the PHP code is syntactically incorrect and cannot be executed

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://osvdb.org/39018
http://www.attrition.org/pipermail/vim/2007-October/001844.html
http://www.attrition.org/pipermail/vim/2007-October/001845.html
http://www.securityfocus.com/bid/26278
https://exchange.xforce.ibmcloud.com/vulnerabilities/38183
https://www.exploit-db.com/exploits/4590

Configurations

Configuration 1 (hide)

cpe:2.3:a:phpmyconferences:phpmyconferences:*:*:*:*:*:*:*:*

History

07 Nov 2023, 02:01

Type	Values Removed	Values Added
Summary	DISPUTED Directory traversal vulnerability in PageTraiteDownload.php in phpMyConferences 8.0.2 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the dir parameter. NOTE: this issue is disputed for 8.0.2 by a reliable third party, who notes that the PHP code is syntactically incorrect and cannot be executed.	Directory traversal vulnerability in PageTraiteDownload.php in phpMyConferences 8.0.2 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the dir parameter. NOTE: this issue is disputed for 8.0.2 by a reliable third party, who notes that the PHP code is syntactically incorrect and cannot be executed

Information

Published : 2007-11-05 17:46

Updated : 2024-08-07 16:15

NVD link : CVE-2007-5811

Mitre link : CVE-2007-5811

CVE.ORG link : CVE-2007-5811

JSON object : View

Products Affected

phpmyconferences

phpmyconferences

CWE

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

{"id": "CVE-2007-5811", "cveTags": [{"tags": ["disputed"], "sourceIdentifier": "cve@mitre.org"}], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2007-11-05T17:46:00.000", "references": [{"url": "http://osvdb.org/39018", "source": "cve@mitre.org"}, {"url": "http://www.attrition.org/pipermail/vim/2007-October/001844.html", "source": "cve@mitre.org"}, {"url": "http://www.attrition.org/pipermail/vim/2007-October/001845.html", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/26278", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38183", "source": "cve@mitre.org"}, {"url": "https://www.exploit-db.com/exploits/4590", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in PageTraiteDownload.php in phpMyConferences 8.0.2 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the dir parameter. NOTE: this issue is disputed for 8.0.2 by a reliable third party, who notes that the PHP code is syntactically incorrect and cannot be executed"}, {"lang": "es", "value": "** IMPUGNADO ** Vulnerabilidad de salto de directorio en PageTraiteDownload.php de phpMyConferences 8.0.2 y versiones anteriores permite a atacantes remotos leer ficheros de su elecci\u00f3n mediante un .. (punto punto) a trav\u00e9s del par\u00e1metro dir.\r\nNOTA: este asunto se impugna para 8.0.2 por una tercera parte fiable, que se\u00f1ala que el c\u00f3digo PHP es sint\u00e1cticamente incorrecto y no puede ser ejecutado."}], "lastModified": "2024-08-07T16:15:32.640", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:phpmyconferences:phpmyconferences:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9245212-7B2A-4259-8FCF-B7FBD88D51CA", "versionEndIncluding": "8.0.2"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}