VYPR
Unrated severityNVD Advisory· Published Jan 19, 2007· Updated Jun 16, 2026

CVE-2007-0389

CVE-2007-0389

Description

Directory traversal vulnerability in ArsDigita Community System (ACS) 3.4.10 and earlier, and ArsDigita Community Education Solution (ACES) 1.1, allows remote attackers to read arbitrary files via .%252e/ (double-encoded dot dot slash) sequences in the URI.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:arsdigita:arsdigita_community_education_solution:1.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:arsdigita:arsdigita_community_education_solution:1.1:*:*:*:*:*:*:*
    • (no CPE)range: = 1.1
  • cpe:2.3:a:arsdigita:arsdigita_community_system:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:arsdigita:arsdigita_community_system:*:*:*:*:*:*:*:*range: <=3.4.10
    • (no CPE)range: <=3.4.10

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.