AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2007-0335: Multiple directory traversal vulnerabilities in Jax Petition Book 1.0.3.06 allow remote attackers to include and execute

infovulnerability

security

Source: NVD/CVE DatabaseJanuary 18, 2007CVE-2007-0335

Summary

Jax Petition Book version 1.0.3.06 contains directory traversal vulnerabilities (a security flaw where attackers use .. sequences to access files outside the intended folder) in two PHP files. Remote attackers can exploit this by adding .. characters to the languagepack parameter, allowing them to view and run arbitrary local files on the server.

Vulnerability Details

CVSS Score

6.8

EPSS (30-day exploit probability)

EPSS: 13.0%

Classification

Attack SophisticationTrivial

Original source: https://nvd.nist.gov/vuln/detail/CVE-2007-0335

First tracked: February 15, 2026 at 08:42 PM

Classified by LLM (prompt v3) · confidence: 95%