VYPR
Unrated severityNVD Advisory· Published Apr 2, 2008· Updated Jun 16, 2026

CVE-2008-1652

CVE-2008-1652

Description

Directory traversal vulnerability in the _serve_request_multiple function in lib/Perlbal/ClientHTTPBase.pm in Perlbal before 1.70, when concat get is enabled, allows remote attackers to read arbitrary files in a parent directory via a directory traversal sequence in an unspecified parameter. NOTE: some of these details are obtained from third party information.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Perlbal/Perlbal2 versions
    cpe:2.3:a:perlbal:perlbal:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:perlbal:perlbal:*:*:*:*:*:*:*:*range: <=1.60
    • (no CPE)range: <1.70

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.