Vulnerability Description
Multiple directory traversal vulnerabilities in openmedia allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) src parameter to page.php or the (2) format parameter to search_form.php.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Openmedia | Openmedia | All versions |
References
- http://osvdb.org/33370
- http://osvdb.org/33371
- http://securityreason.com/securityalert/2103
- http://www.securityfocus.com/archive/1/455786/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31258
- http://osvdb.org/33370
- http://osvdb.org/33371
- http://securityreason.com/securityalert/2103
- http://www.securityfocus.com/archive/1/455786/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31258
FAQ
What is CVE-2007-0088?
CVE-2007-0088 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Multiple directory traversal vulnerabilities in openmedia allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) src parameter to page.php or the (2) format parameter to search_f...
How severe is CVE-2007-0088?
CVE-2007-0088 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-0088?
Check the references section above for vendor advisories and patch information. Affected products include: Openmedia Openmedia.