VYPR
Unrated severityNVD Advisory· Published Feb 21, 2007· Updated Jun 16, 2026

CVE-2007-1044

CVE-2007-1044

Description

Pearson Education PowerSchool 4.3.6 allows remote attackers to list the contents of the admin folder via a URI composed of the admin/ directory name and an arbitrary filename ending in ".js." NOTE: it was later reported that this issue had been addressed by 5.1.2.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:pearson_education:powerschool:4.3.6:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:pearson_education:powerschool:4.3.6:*:*:*:*:*:*:*
    • (no CPE)range: <=4.3.6

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.