PT-2007-6827 · Easygb · Easygb

Published

2007-11-08

Updated

2008-11-15

CVE-2007-5890

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions easyGB version 2.1.1

Description A directory traversal issue exists, allowing remote attackers to include arbitrary files via the DatabaseType parameter in index.php.

Recommendations For easyGB version 2.1.1, consider restricting access to the DatabaseType parameter in the index.php file until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-5890

Affected Products

Easygb

PT-2007-6827 · Easygb · Easygb

CVE-2007-5890

Related Identifiers

Affected Products

References · 4