Unrated severityNVD Advisory· Published Sep 17, 2007· Updated Jun 16, 2026
CVE-2007-4908
CVE-2007-4908
Description
Directory traversal vulnerability in index.php in AuraCMS 2.1 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the pilih parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:a:auracms:auracms:1.0:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:auracms:auracms:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:auracms:auracms:1.5:*:*:*:*:*:*:*
- cpe:2.3:a:auracms:auracms:1.5_rc:*:*:*:*:*:*:*
- cpe:2.3:a:auracms:auracms:1.62:*:*:*:*:*:*:*
- cpe:2.3:a:auracms:auracms:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:auracms:auracms:2.1:*:*:*:*:*:*:*
- (no CPE)range: <=2.1
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.