Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.8
CVSSv2

CVE-2007-1896

Published: 09/04/2007 Updated: 11/10/2017
CVSS v2 Base Score: 5.8 | Impact Score: 4.9 | Exploitability Score: 8.6
VMScore: 585
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N

Vulnerability Summary

Directory traversal vulnerability in chat.php in Sky GUNNING MySpeach 3.0.7 and previous versions allows remote malicious users to include arbitrary local files via a .. (dot dot) and trailing %00 (NULL) in a my_ms[root] cookie.

Vulnerable Product Search on Vulmon Subscribe to Product

sky gunning myspeach 3.0.6

sky gunning myspeach 3.0.7

sky gunning myspeach 2.1_beta

sky gunning myspeach 3.0.2

Exploits

Exploit DB: MySpeach 3.0.7 - Local/Remote File Inclusion
/=======================================\ | Advisory :: MySpeach <= 307 | +=======================================+---------------------------------------------------------------\ | | | Download link : wwwgraphiksnet/scripts-php/script-7-1-0html | | Official website : wwwgraphiksnet | | ...

References

NVD-CWE-Otherhttp://secunia.com/advisories/24760http://secunia.com/advisories/24766http://osvdb.org/34146http://www.vupen.com/english/advisories/2007/1261https://www.exploit-db.com/exploits/3657https://nvd.nist.govhttps://www.exploit-db.com/exploits/3657/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereferenceCVE-2024-5274CVE-2020-17519CVE-2024-35340CVE-2021-47558localXML injectionCVE-2021-47519CVE-2021-47543
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook