CVE-2007-5299 Information

Feb 14, 2021 cve

Description

Multiple directory traversal vulnerabilities in SkaDate 5.0 and 6.0 and possibly later versions such as 6.482 allow remote attackers to read arbitrary files via a .. (dot dot) in the view_mode parameter to (1) featured_list.php and (2) online_list.php in member/.

Reference

http://osvdb.org/38456 http://osvdb.org/38457 http://secunia.com/advisories/27114 http://www.securityfocus.com/bid/25954 http://www.vupen.com/english/advisories/2007/3432 https://exchange.xforce.ibmcloud.com/vulnerabilities/37001 https://www.exploit-db.com/exploits/4493

Share on: