Lucene search

[email protected]CVE-2007-1144

HistoryMar 02, 2007 - 9:18 p.m.

CVE-2007-1144

2007-03-0221:18:00

CWE-22

[email protected]

web.nvd.nist.gov

cve

2007

1144

directory traversal

vulnerability

j-web pics navigator

remote attack

arbitrary directories

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.7 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.9%

JSON

Directory traversal vulnerability in jwpn-photos.php in J-Web Pics Navigator 2.0 allows remote attackers to list arbitrary directories via a … (dot dot) in the dir parameter.

Affected configurations

NVD

Node

comscriptsj-web_pics_navigatorMatch1.0

comscriptsj-web_pics_navigatorMatch2.0

CPENameOperatorVersion
comscripts:j-web_pics_navigatorcomscripts j-web pics navigatoreq1.0
comscripts:j-web_pics_navigatorcomscripts j-web pics navigatoreq2.0

CPE	Name	Operator	Version
comscripts:j-web_pics_navigator	comscripts j-web pics navigator	eq	1.0
comscripts:j-web_pics_navigator	comscripts j-web pics navigator	eq	2.0

References

forums.avenir-geopolitique.net/viewtopic.php?t=2692

osvdb.org/33117

secunia.com/advisories/24273

securityreason.com/securityalert/2340

www.securityfocus.com/archive/1/460907/100/0/threaded

www.securityfocus.com/bid/22681

www.vupen.com/english/advisories/2007/0711

exchange.xforce.ibmcloud.com/vulnerabilities/32646

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.7 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.9%

JSON

Related for CVE-2007-1144

cvelist1 nvd1 prion1 securityvulns1