VYPR
Unrated severityNVD Advisory· Published May 17, 2007· Updated Jun 16, 2026

CVE-2007-2747

CVE-2007-2747

Description

Directory traversal vulnerability in rdw_helpers.py in rdiffWeb before 0.3.5.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the path parameter to the /browse URI.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • Rdiffweb/Rdiffweb7 versions
    cpe:2.3:a:rdiffweb:rdiffweb:*:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:rdiffweb:rdiffweb:*:*:*:*:*:*:*:*range: <=0.3.5
    • cpe:2.3:a:rdiffweb:rdiffweb:0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:rdiffweb:rdiffweb:0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:rdiffweb:rdiffweb:0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:rdiffweb:rdiffweb:0.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:rdiffweb:rdiffweb:0.3.2:*:*:*:*:*:*:*
    • (no CPE)range: <0.3.5.1

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.