CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2007-5454
https://notcve.org/view.php?id=CVE-2007-5454
Directory traversal vulnerability in index.php in PHP File Sharing System 1.5.1 allows remote attackers to list or create arbitrary directories, or delete arbitrary files, as demonstrated by listing directories via a .. (dot dot) in the cam parameter. Vulnerabilidad de escalado de directorio en el index.php del PHP File Sharing System 1.5.1 permite a atacantes remotos listar o crear directorios de su elección, o borrar ficheros de su elección, como lo demostrado listando directorios a través de la inclusión de .. (punto punto) en el parámetro cam. • http://archives.neohapsis.com/archives/fulldisclosure/2007-10/0343.html http://secunia.com/advisories/27257 http://www.securityfocus.com/bid/26065 https://exchange.xforce.ibmcloud.com/vulnerabilities/37193 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •