CVE-2007-3535

Published: 03/07/2007 Updated: 29/09/2017

CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10

VMScore: 650

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N

Multiple directory traversal vulnerabilities in GL-SH Deaf Forum 6.4.4 and previous versions allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the (1) FORUM_LANGUAGE parameter to functions.php or the (2) style parameter to bottom.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
frank karau gl-sh deaf forum

########################## wwwBugReportir ####################################### # # AmnPardaz Security Research Team # # Title: GL-SH Deaf Forum <=655 Multiple Vulnerabilities # Vendor: wwwfrank-karaude # Vulnerable Version: 655 and prior versions # Exploit: Available # Impact: High # Fix: N/A # Original Advisory: wwwbugreport ...

###GL-SH Deaf Board Version <= 644 local file inclusion### #download: wwwfrank-karaude/download/Deafforum_version_643zip #found by: Katatafish (karatatata@hushcom) #google dork:"2005 wwwfrank-karaude" | "2006 wwwfrank-karaude" #exploit: wwwsitecom/[path]/functionsphp?FORUM_LANGUAGE=///////// ...

NVD-CWE-Other http://secunia.com/advisories/25893 http://osvdb.org/37111 http://osvdb.org/37110 https://exchange.xforce.ibmcloud.com/vulnerabilities/35160 https://www.exploit-db.com/exploits/4124 https://nvd.nist.gov https://www.exploit-db.com/exploits/5870/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-3535

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect