Unrated severityNVD Advisory· Published Jan 19, 2007· Updated Jun 16, 2026
CVE-2007-0389
CVE-2007-0389
Description
Directory traversal vulnerability in ArsDigita Community System (ACS) 3.4.10 and earlier, and ArsDigita Community Education Solution (ACES) 1.1, allows remote attackers to read arbitrary files via .%252e/ (double-encoded dot dot slash) sequences in the URI.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:arsdigita:arsdigita_community_education_solution:1.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:arsdigita:arsdigita_community_education_solution:1.1:*:*:*:*:*:*:*
- (no CPE)range: = 1.1
cpe:2.3:a:arsdigita:arsdigita_community_system:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:arsdigita:arsdigita_community_system:*:*:*:*:*:*:*:*range: <=3.4.10
- (no CPE)range: <=3.4.10
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.