Lucene search
MitreCVE-2007-5431HistoryOct 12, 2007 - 11:17 p.m.
CVE-2007-5431
2007-10-1223:17:00
CWE-200
mitre
web.nvd.nist.gov
20
cve-2007-5431
ftp
sensitive information exposure
myftpuploader
stride 1.0
security vulnerability
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.006
Percentile
78.4%
include/imageupload.js in the MyFTPUploader module in Stride 1.0 contains sensitive information including FTP login credentials, which might allow remote attackers to gain unauthorized access to the FTP server being used by the module by viewing the source code.
Affected configurations
Node
javaatworkmyftpuploader_module
ORscottmanktelowstrideMatch1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| javaatwork | myftpuploader_module | * | cpe:2.3:a:javaatwork:myftpuploader_module:*:*:*:*:*:*:*:* |
| scottmanktelow | stride | 1.0 | cpe:2.3:a:scottmanktelow:stride:1.0:*:*:*:*:*:*:* |
Related
prion
prion
Code injection
2007-10-12 23:17:00
cvelist
cvelist
CVE-2007-5431
2007-10-12 23:00:00
nvd
nvd
CVE-2007-5431
2007-10-12 23:17:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.006
Percentile
78.4%
Related for CVE-2007-5431