exploitDog

CVE-2007-3968

Опубликовано: 25 июл. 2007

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

index.php in dirLIST before 0.1.1 allows remote attackers to list the contents of an excluded folder via a modified URL containing the folder name.

Ссылки

http://secunia.com/advisories/26144
Patch
Vendor Advisory
http://sourceforge.net/project/shownotes.php?release_id=524378
Patch
http://www.securityfocus.com/bid/24987
Exploit
Patch
http://secunia.com/advisories/26144
Patch
Vendor Advisory
http://sourceforge.net/project/shownotes.php?release_id=524378
Patch
http://www.securityfocus.com/bid/24987
Exploit
Patch

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dirlist:dirlist_php:*:*:*:*:*:*:*:*

Версия до 0.1.1 (включая)

EPSS

Процентиль: 60%

0.0039

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-264

CWE-863

Связанные уязвимости

GHSA-p898-pgm6-xvx9

CVSS3: 5.3

github

почти 4 года назад

index.php in dirLIST before 0.1.1 allows remote attackers to list the contents of an excluded folder via a modified URL containing the folder name.

EPSS

Процентиль: 60%

0.0039

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-264

CWE-863