CVE-2007-1455
N/A
N/A
Summary
Multiple absolute path traversal vulnerabilities in Fantastico, as used with cPanel 10.x, allow remote authenticated users to include and execute arbitrary local files via (1) the userlanguage parameter to includes/load_language.php or (2) the fantasticopath parameter to includes/mysqlconfig.php and certain other files.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/archive/1/462562/100/0/threaded
- http://osvdb.org/35036
- http://securityreason.com/securityalert/2420
- http://osvdb.org/35037
References
- http://www.securityfocus.com/archive/1/462562/100/0/threaded
- http://osvdb.org/35036
- http://securityreason.com/securityalert/2420
- http://osvdb.org/35037
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.