Back to search
CVE-2007-6188
Published: Nov 30, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple directory traversal vulnerabilities in TuMusika Evolution 1.7R5 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter to (1) languages_n.php, (2) languages_f.php, or (3) languages.php in inc/; and (4) allow remote attackers to read arbitrary local files via a .. (dot dot) in the uri parameter to frames/nogui/sc_download.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
42451
vdb-entry
x_refsource_OSVDB
tumusika-language-directory-traversal(38720)
vdb-entry
x_refsource_XF
42450
vdb-entry
x_refsource_OSVDB
27866
third-party-advisory
x_refsource_SECUNIA
42452
vdb-entry
x_refsource_OSVDB
26631
vdb-entry
x_refsource_BID
26632
vdb-entry
x_refsource_BID
4674
exploit
x_refsource_EXPLOIT-DB
42453
vdb-entry
x_refsource_OSVDB
tumusika-scdownload-directory-traversal(38719)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now