Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4641


Vulnerability Score 6.4 6.4
CVE Id CVE-2007-4641
Last Modified 05 Sep 2008 05:28:44
Published 31 Aug 2007 07:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Directory traversal vulnerability in index.php in Pakupaku CMS 0.4 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter, as demonstrated by injecting code into an Apache log file.

Vulnerable Systems


  • Pakupaku Cms 0.4


MILW0RM - 4341

SECUNIA - 26598

XF - pakupaku-index-file-include(36358)

Last Updated: 27 May 2016 10:45:56