CVE-2007-3295

EPSS 1.42%
Veröffentlicht 20.06.2007 21:30:00
Zuletzt bearbeitet 16.06.2026 22:41:26
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Directory traversal vulnerability in Yet another Bulletin Board (YaBB) 2.1 and earlier allows remote authenticated users to execute arbitrary Perl code via a .. (dot dot) in the userlanguage profile setting, which sets the userlanguage key of the member hash, and is propagated to the language variable in (1) HelpCentre.pl and (2) ICQPager.pl, (3) the use_lang variable in Subs.pl, and the actlang variable in (4) Post.pl and (5) InstantMessage.pl; as demonstrated by pointing userlanguage to the English folder, modifying English/HelpCentre.lng file to contain Perl statements, and then invoking the help action in YaBB.pl.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 9

NVD 4 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Yabb ≫ Yabb Version2.0

Yabb ≫ Yabb Version2.0_rc1

Yabb ≫ Yabb Version2.0_rc2

Yabb ≫ Yabb Version2.1

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.42%	0.693

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.5	8	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://osvdb.org/37238

http://secunia.com/advisories/25734

http://securityreason.com/securityalert/2818

http://www.securityfocus.com/archive/1/471733/100/0/threaded

http://www.securityfocus.com/bid/24529

https://exchange.xforce.ibmcloud.com/vulnerabilities/34932

https://nvd.nist.gov/vuln/detail/CVE-2007-3295

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-3295

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-3295

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2007-3295