Unrated severityNVD Advisory· Published Sep 18, 2007· Updated Apr 23, 2026
CVE-2007-4957
CVE-2007-4957
Description
Multiple directory traversal vulnerabilities in download.php in Chupix CMS 0.2.3 allow remote attackers to read or overwrite arbitrary files via a .. (dot dot) in the (1) fichier or (2) repertoire parameter, or create arbitrary directories via a .. (dot dot) in the (3) repertoire parameter.
Affected products
1- cpe:2.3:a:chupix:chupix_cms:0.2.3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7News mentions
0No linked articles in our index yet.