Back to search
CVE-2007-0335
Published: Jan 18, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple directory traversal vulnerabilities in Jax Petition Book 1.0.3.06 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the languagepack parameter to (1) jax_petitionbook.php or (2) smileys.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
23784
third-party-advisory
x_refsource_SECUNIA
20070116 Re: Jax Petition Book (languagepack) Remote File Include Vulnerabilities
mailing-list
x_refsource_BUGTRAQ
20070114 Jax Petition Book (languagepack) Remote File Include Vulnerabilities
mailing-list
x_refsource_BUGTRAQ
32835
vdb-entry
x_refsource_OSVDB
petitionbook-language-file-include(31543)
vdb-entry
x_refsource_XF
2161
third-party-advisory
x_refsource_SREASON
22072
vdb-entry
x_refsource_BID
ADV-2007-0220
vdb-entry
x_refsource_VUPEN
20070115 Re: Jax Petition Book (languagepack) Remote File Include Vulnerabilities
mailing-list
x_refsource_BUGTRAQ
32836
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now