Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6508

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-6508
Last Modified 15 Nov 2008 02:04:52
Published 21 Dec 2007 02:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-6508

Summary

Directory traversal vulnerability in view.php in xeCMS 1.0 allows remote attackers to read arbitrary files via a ..%2F (dot dot slash) in the list parameter.

Vulnerable Systems

Application

  • Xecms 1.0


References

BID - 26952

BUGTRAQ - 20071219 xeCMS 1.x.x Remote File Disclosure Vulnerability.

MILW0RM - 4758

OSVDB - 44555

XF - xecms-view-directory-traversal(39151)

SREASON - 3477


Last Updated: 27 May 2016 10:46:31