CVE-2008-1857

Multiple directory traversal vulnerabilities in viewsource.php in Make our Life Easy (Mole) 2.1.0 allow remote attackers to read arbitrary files via directory traversal sequences in the (1) dirn and (2) fname parameters.

Published: Apr 16, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-1857
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-22

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
mole / make_our_life_easy	2.1.0	2.1.0.x

http://secunia.com/advisories/29685
http://www.securityfocus.com/bid/28659
http://www.vupen.com/english/advisories/2008/1141/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41681
https://www.exploit-db.com/exploits/5394

Vulnerability Database

CVE-2008-1857