CVE-2007-2519

Exp

Directory traversal vulnerability in the installer in PEAR 1.0 through 1.5.3 allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in the (1) install-as attribute in the file element in package.xml 1.0 or the (2) as attribute in the install element in package.xml 2.0. NOTE: it could be argued that this does not cross privilege boundaries in typical installations, since the code being installed could perform the same actions.

Published: 2007-05-22 Last update: 2026-06-16 Assigner: [email protected] Source: [email protected]

Conclusion & alert: CVE-2007-2519 is rated High Exploit Risk (77.9/100): CVSS Medium severity, with high exploitation likelihood (EPSS 7.29%, 94th percentile). Core evidence: 2 public exploit reference(s) are indexed (Exploit-DB). EPSS rose +2.94% over the last day, indicating growing attacker interest. Mandatory action: Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Public exploit references (Exploit-DB) for CVE-2007-2519

EDB-ID Source Kind Published Link
30074 exploit_db edb 2007-05-07 Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗

Exploit prediction scoring system (EPSS) score for CVE-2007-2519

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-06-15 4.35% 7.29% +2.94%
2 2026-01-08 3.38% 4.35% +0.97%
3 2025-05-28 3.38%

Full EPSS history (17 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2007-2519

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
6.8 2.0 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P Click to expand
Access vector (AV:N)
Can be exploited remotely over network reachability.
Access complexity (AC:M)
Exploitation needs some favorable conditions, but not exceptional ones.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:P)
Partial confidentiality impact.
Integrity impact (I:P)
Partial integrity impact.
Availability impact (A:P)
Partial availability impact.
8.6 6.4 [email protected]

Weakness enumeration for CVE-2007-2519

OS Trackers for CVE-2007-2519

vendor priority summary link
redhat https://access.redhat.com/security/cve/CVE-2007-2519
ubuntu medium CVE-2007-2519 medium priority: Ubuntu including 1 source packages (php5), 4 status rows across 4 suites (dapper, edgy, feisty, upstream): released 4. https://ubuntu.com/security/CVE-2007-2519

Vendor comments (NVD) for CVE-2007-2519

  • Red Hat (2007-05-24T00:00:00)

    Installation of a PEAR package from an untrusted source could allow malicious code to be installed and potentially executed by the root user. This is true regardless of the existence of this particular bug in the PEAR installer, so the bug would not be treated as security-sensitive. As when handling system RPM packages, the root user must always ensure that any packages installed are from a trusted source and have been packaged correctly.

Affected software / configurations for CVE-2007-2519

Vendor Product Version Raw CPE
php_group pear 1.0 cpe:2.3:a:php_group:pear:1.0:*:*:*:*:*:*:*
php_group pear 1.0.1 cpe:2.3:a:php_group:pear:1.0.1:*:*:*:*:*:*:*
php_group pear 1.1 cpe:2.3:a:php_group:pear:1.1:*:*:*:*:*:*:*
php_group pear 1.2 cpe:2.3:a:php_group:pear:1.2:*:*:*:*:*:*:*
php_group pear 1.2.1 cpe:2.3:a:php_group:pear:1.2.1:*:*:*:*:*:*:*
php_group pear 1.2b1 cpe:2.3:a:php_group:pear:1.2b1:*:*:*:*:*:*:*
php_group pear 1.2b2 cpe:2.3:a:php_group:pear:1.2b2:*:*:*:*:*:*:*
php_group pear 1.2b3 cpe:2.3:a:php_group:pear:1.2b3:*:*:*:*:*:*:*
php_group pear 1.2b4 cpe:2.3:a:php_group:pear:1.2b4:*:*:*:*:*:*:*
php_group pear 1.2b5 cpe:2.3:a:php_group:pear:1.2b5:*:*:*:*:*:*:*
php_group pear 1.3 cpe:2.3:a:php_group:pear:1.3:*:*:*:*:*:*:*
php_group pear 1.3.1 cpe:2.3:a:php_group:pear:1.3.1:*:*:*:*:*:*:*
php_group pear 1.3.3 cpe:2.3:a:php_group:pear:1.3.3:*:*:*:*:*:*:*
php_group pear 1.3.3.1 cpe:2.3:a:php_group:pear:1.3.3.1:*:*:*:*:*:*:*
php_group pear 1.3.4 cpe:2.3:a:php_group:pear:1.3.4:*:*:*:*:*:*:*
php_group pear 1.3.5 cpe:2.3:a:php_group:pear:1.3.5:*:*:*:*:*:*:*
php_group pear 1.3.6 cpe:2.3:a:php_group:pear:1.3.6:*:*:*:*:*:*:*
php_group pear 1.3b1 cpe:2.3:a:php_group:pear:1.3b1:*:*:*:*:*:*:*
php_group pear 1.3b2 cpe:2.3:a:php_group:pear:1.3b2:*:*:*:*:*:*:*
php_group pear 1.3b3 cpe:2.3:a:php_group:pear:1.3b3:*:*:*:*:*:*:*
php_group pear 1.3b5 cpe:2.3:a:php_group:pear:1.3b5:*:*:*:*:*:*:*
php_group pear 1.3b6 cpe:2.3:a:php_group:pear:1.3b6:*:*:*:*:*:*:*
php_group pear 1.4.0 cpe:2.3:a:php_group:pear:1.4.0:*:*:*:*:*:*:*
php_group pear 1.4.0a1 cpe:2.3:a:php_group:pear:1.4.0a1:*:*:*:*:*:*:*
php_group pear 1.4.0a2 cpe:2.3:a:php_group:pear:1.4.0a2:*:*:*:*:*:*:*
php_group pear 1.4.0a3 cpe:2.3:a:php_group:pear:1.4.0a3:*:*:*:*:*:*:*
php_group pear 1.4.0a4 cpe:2.3:a:php_group:pear:1.4.0a4:*:*:*:*:*:*:*
php_group pear 1.4.0a5 cpe:2.3:a:php_group:pear:1.4.0a5:*:*:*:*:*:*:*
php_group pear 1.4.0a6 cpe:2.3:a:php_group:pear:1.4.0a6:*:*:*:*:*:*:*
php_group pear 1.4.0a7 cpe:2.3:a:php_group:pear:1.4.0a7:*:*:*:*:*:*:*
php_group pear 1.4.0a8 cpe:2.3:a:php_group:pear:1.4.0a8:*:*:*:*:*:*:*
php_group pear 1.4.0a9 cpe:2.3:a:php_group:pear:1.4.0a9:*:*:*:*:*:*:*
php_group pear 1.4.0a10 cpe:2.3:a:php_group:pear:1.4.0a10:*:*:*:*:*:*:*
php_group pear 1.4.0a11 cpe:2.3:a:php_group:pear:1.4.0a11:*:*:*:*:*:*:*
php_group pear 1.4.0a12 cpe:2.3:a:php_group:pear:1.4.0a12:*:*:*:*:*:*:*
php_group pear 1.4.0b1 cpe:2.3:a:php_group:pear:1.4.0b1:*:*:*:*:*:*:*
php_group pear 1.4.0b2 cpe:2.3:a:php_group:pear:1.4.0b2:*:*:*:*:*:*:*
php_group pear 1.4.0rc1 cpe:2.3:a:php_group:pear:1.4.0rc1:*:*:*:*:*:*:*
php_group pear 1.4.0rc2 cpe:2.3:a:php_group:pear:1.4.0rc2:*:*:*:*:*:*:*
php_group pear 1.4.1 cpe:2.3:a:php_group:pear:1.4.1:*:*:*:*:*:*:*
php_group pear 1.4.2 cpe:2.3:a:php_group:pear:1.4.2:*:*:*:*:*:*:*
php_group pear 1.4.3 cpe:2.3:a:php_group:pear:1.4.3:*:*:*:*:*:*:*
php_group pear 1.4.4 cpe:2.3:a:php_group:pear:1.4.4:*:*:*:*:*:*:*
php_group pear 1.4.5 cpe:2.3:a:php_group:pear:1.4.5:*:*:*:*:*:*:*
php_group pear 1.4.6 cpe:2.3:a:php_group:pear:1.4.6:*:*:*:*:*:*:*
php_group pear 1.4.7 cpe:2.3:a:php_group:pear:1.4.7:*:*:*:*:*:*:*
php_group pear 1.4.8 cpe:2.3:a:php_group:pear:1.4.8:*:*:*:*:*:*:*
php_group pear 1.4.9 cpe:2.3:a:php_group:pear:1.4.9:*:*:*:*:*:*:*
php_group pear 1.4.10 cpe:2.3:a:php_group:pear:1.4.10:*:*:*:*:*:*:*
php_group pear 1.4.10rc1 cpe:2.3:a:php_group:pear:1.4.10rc1:*:*:*:*:*:*:*
php_group pear 1.4.11 cpe:2.3:a:php_group:pear:1.4.11:*:*:*:*:*:*:*
php_group pear 1.5.0 cpe:2.3:a:php_group:pear:1.5.0:*:*:*:*:*:*:*
php_group pear 1.5.0a1 cpe:2.3:a:php_group:pear:1.5.0a1:*:*:*:*:*:*:*
php_group pear 1.5.0rc1 cpe:2.3:a:php_group:pear:1.5.0rc1:*:*:*:*:*:*:*
php_group pear 1.5.0rc2 cpe:2.3:a:php_group:pear:1.5.0rc2:*:*:*:*:*:*:*
php_group pear 1.5.0rc3 cpe:2.3:a:php_group:pear:1.5.0rc3:*:*:*:*:*:*:*
php_group pear 1.5.1 cpe:2.3:a:php_group:pear:1.5.1:*:*:*:*:*:*:*
php_group pear 1.5.2 cpe:2.3:a:php_group:pear:1.5.2:*:*:*:*:*:*:*
php_group pear 1.5.3 cpe:2.3:a:php_group:pear:1.5.3:*:*:*:*:*:*:*

References for CVE-2007-2519

cvelogic Threat Intelligence