CVE-2007-5742
published 2007-12-01CVE-2007-5742: Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read…
PriorityP339critical9CVSS 2.0
AVNACLAuNCPIPAC
EPSS
2.83%
84.9th percentile
Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read arbitrary files via ".." sequences in unknown vectors.
Affected
81 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
| wesnoth | wesnoth | — | — |
CVSS provenance
nvdv2.09.0CRITICALAV:N/AC:L/Au:N/C:P/I:P/A:C
vendor_redhat9.0CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-vx59-6637-4544: Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1
ghsa_unreviewed·2022-05-01
CVE-2007-5742 [HIGH] CWE-22 GHSA-vx59-6637-4544: Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1
Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read arbitrary files via ".." sequences in unknown vectors.
Red Hat
wesnoth: multiple vulnerabilities
vendor_redhat·2007-11-27·CVSS 9.0
CVE-2007-5742 [CRITICAL] wesnoth: multiple vulnerabilities
wesnoth: multiple vulnerabilities
Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read arbitrary files via ".." sequences in unknown vectors.
No detection rules found.
No public exploits indexed.
http://osvdb.org/41713http://secunia.com/advisories/27786http://secunia.com/advisories/27920http://secunia.com/advisories/27943http://sourceforge.net/project/shownotes.php?release_id=557098http://www.debian.org/security/2007/dsa-1421http://www.securityfocus.com/bid/26626http://www.vupen.com/english/advisories/2007/4026http://www.wesnoth.org/forum/viewtopic.php?p=264289#264289http://www.wesnoth.org/forum/viewtopic.php?t=18844https://exchange.xforce.ibmcloud.com/vulnerabilities/38752https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00004.htmlhttps://www.redhat.com/archives/fedora-package-announce/2007-December/msg00006.htmlhttp://osvdb.org/41713http://secunia.com/advisories/27786http://secunia.com/advisories/27920http://secunia.com/advisories/27943http://sourceforge.net/project/shownotes.php?release_id=557098http://www.debian.org/security/2007/dsa-1421http://www.securityfocus.com/bid/26626http://www.vupen.com/english/advisories/2007/4026http://www.wesnoth.org/forum/viewtopic.php?p=264289#264289http://www.wesnoth.org/forum/viewtopic.php?t=18844https://exchange.xforce.ibmcloud.com/vulnerabilities/38752https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00004.htmlhttps://www.redhat.com/archives/fedora-package-announce/2007-December/msg00006.html
2007-12-01
Published