Directory traversal vulnerability in the installer in PEAR 1.0 through 1.5.3 allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in the (1) install-as attribute in the file element in package.xml 1.0 or the (2) as attribute in the install element in package.xml 2.0. NOTE: it could be argued that this does not cross privilege boundaries in typical installations, since the code being installed could perform the same actions.
Conclusion & alert: CVE-2007-2519 is rated High Exploit Risk (77.9/100): CVSS Medium severity, with high exploitation likelihood (EPSS 7.29%, 94th percentile). Core evidence: 2 public exploit reference(s) are indexed (Exploit-DB). EPSS rose +2.94% over the last day, indicating growing attacker interest. Mandatory action: Public exploits are available—assess exposure, apply mitigations, and prioritize patching.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
| EDB-ID | Source | Kind | Published | Link |
|---|---|---|---|---|
| 30074 | exploit_db | edb | 2007-05-07 | Exploit-DB ↗ |
| — | nvd_ref | exploit_tag | Exploit-DB ↗ |
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 4.35% | 7.29% | +2.94% |
| 2 | 2026-01-08 | 3.38% | 4.35% | +0.97% |
| 3 | 2025-05-28 | — | 3.38% | — |
Full EPSS history (17 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 6.8 | 2.0 | MEDIUM |
|
8.6 | 6.4 | [email protected] |
| vendor | priority | summary | link |
|---|---|---|---|
redhat
|
— | — | https://access.redhat.com/security/cve/CVE-2007-2519 |
ubuntu
|
medium | CVE-2007-2519 medium priority: Ubuntu including 1 source packages (php5), 4 status rows across 4 suites (dapper, edgy, feisty, upstream): released 4. | https://ubuntu.com/security/CVE-2007-2519 |
Installation of a PEAR package from an untrusted source could allow malicious code to be installed and potentially executed by the root user. This is true regardless of the existence of this particular bug in the PEAR installer, so the bug would not be treated as security-sensitive. As when handling system RPM packages, the root user must always ensure that any packages installed are from a trusted source and have been packaged correctly.
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| php_group | pear | 1.0 | cpe:2.3:a:php_group:pear:1.0:*:*:*:*:*:*:* |
| php_group | pear | 1.0.1 | cpe:2.3:a:php_group:pear:1.0.1:*:*:*:*:*:*:* |
| php_group | pear | 1.1 | cpe:2.3:a:php_group:pear:1.1:*:*:*:*:*:*:* |
| php_group | pear | 1.2 | cpe:2.3:a:php_group:pear:1.2:*:*:*:*:*:*:* |
| php_group | pear | 1.2.1 | cpe:2.3:a:php_group:pear:1.2.1:*:*:*:*:*:*:* |
| php_group | pear | 1.2b1 | cpe:2.3:a:php_group:pear:1.2b1:*:*:*:*:*:*:* |
| php_group | pear | 1.2b2 | cpe:2.3:a:php_group:pear:1.2b2:*:*:*:*:*:*:* |
| php_group | pear | 1.2b3 | cpe:2.3:a:php_group:pear:1.2b3:*:*:*:*:*:*:* |
| php_group | pear | 1.2b4 | cpe:2.3:a:php_group:pear:1.2b4:*:*:*:*:*:*:* |
| php_group | pear | 1.2b5 | cpe:2.3:a:php_group:pear:1.2b5:*:*:*:*:*:*:* |
| php_group | pear | 1.3 | cpe:2.3:a:php_group:pear:1.3:*:*:*:*:*:*:* |
| php_group | pear | 1.3.1 | cpe:2.3:a:php_group:pear:1.3.1:*:*:*:*:*:*:* |
| php_group | pear | 1.3.3 | cpe:2.3:a:php_group:pear:1.3.3:*:*:*:*:*:*:* |
| php_group | pear | 1.3.3.1 | cpe:2.3:a:php_group:pear:1.3.3.1:*:*:*:*:*:*:* |
| php_group | pear | 1.3.4 | cpe:2.3:a:php_group:pear:1.3.4:*:*:*:*:*:*:* |
| php_group | pear | 1.3.5 | cpe:2.3:a:php_group:pear:1.3.5:*:*:*:*:*:*:* |
| php_group | pear | 1.3.6 | cpe:2.3:a:php_group:pear:1.3.6:*:*:*:*:*:*:* |
| php_group | pear | 1.3b1 | cpe:2.3:a:php_group:pear:1.3b1:*:*:*:*:*:*:* |
| php_group | pear | 1.3b2 | cpe:2.3:a:php_group:pear:1.3b2:*:*:*:*:*:*:* |
| php_group | pear | 1.3b3 | cpe:2.3:a:php_group:pear:1.3b3:*:*:*:*:*:*:* |
| php_group | pear | 1.3b5 | cpe:2.3:a:php_group:pear:1.3b5:*:*:*:*:*:*:* |
| php_group | pear | 1.3b6 | cpe:2.3:a:php_group:pear:1.3b6:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0 | cpe:2.3:a:php_group:pear:1.4.0:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0a1 | cpe:2.3:a:php_group:pear:1.4.0a1:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0a2 | cpe:2.3:a:php_group:pear:1.4.0a2:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0a3 | cpe:2.3:a:php_group:pear:1.4.0a3:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0a4 | cpe:2.3:a:php_group:pear:1.4.0a4:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0a5 | cpe:2.3:a:php_group:pear:1.4.0a5:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0a6 | cpe:2.3:a:php_group:pear:1.4.0a6:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0a7 | cpe:2.3:a:php_group:pear:1.4.0a7:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0a8 | cpe:2.3:a:php_group:pear:1.4.0a8:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0a9 | cpe:2.3:a:php_group:pear:1.4.0a9:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0a10 | cpe:2.3:a:php_group:pear:1.4.0a10:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0a11 | cpe:2.3:a:php_group:pear:1.4.0a11:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0a12 | cpe:2.3:a:php_group:pear:1.4.0a12:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0b1 | cpe:2.3:a:php_group:pear:1.4.0b1:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0b2 | cpe:2.3:a:php_group:pear:1.4.0b2:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0rc1 | cpe:2.3:a:php_group:pear:1.4.0rc1:*:*:*:*:*:*:* |
| php_group | pear | 1.4.0rc2 | cpe:2.3:a:php_group:pear:1.4.0rc2:*:*:*:*:*:*:* |
| php_group | pear | 1.4.1 | cpe:2.3:a:php_group:pear:1.4.1:*:*:*:*:*:*:* |
| php_group | pear | 1.4.2 | cpe:2.3:a:php_group:pear:1.4.2:*:*:*:*:*:*:* |
| php_group | pear | 1.4.3 | cpe:2.3:a:php_group:pear:1.4.3:*:*:*:*:*:*:* |
| php_group | pear | 1.4.4 | cpe:2.3:a:php_group:pear:1.4.4:*:*:*:*:*:*:* |
| php_group | pear | 1.4.5 | cpe:2.3:a:php_group:pear:1.4.5:*:*:*:*:*:*:* |
| php_group | pear | 1.4.6 | cpe:2.3:a:php_group:pear:1.4.6:*:*:*:*:*:*:* |
| php_group | pear | 1.4.7 | cpe:2.3:a:php_group:pear:1.4.7:*:*:*:*:*:*:* |
| php_group | pear | 1.4.8 | cpe:2.3:a:php_group:pear:1.4.8:*:*:*:*:*:*:* |
| php_group | pear | 1.4.9 | cpe:2.3:a:php_group:pear:1.4.9:*:*:*:*:*:*:* |
| php_group | pear | 1.4.10 | cpe:2.3:a:php_group:pear:1.4.10:*:*:*:*:*:*:* |
| php_group | pear | 1.4.10rc1 | cpe:2.3:a:php_group:pear:1.4.10rc1:*:*:*:*:*:*:* |
| php_group | pear | 1.4.11 | cpe:2.3:a:php_group:pear:1.4.11:*:*:*:*:*:*:* |
| php_group | pear | 1.5.0 | cpe:2.3:a:php_group:pear:1.5.0:*:*:*:*:*:*:* |
| php_group | pear | 1.5.0a1 | cpe:2.3:a:php_group:pear:1.5.0a1:*:*:*:*:*:*:* |
| php_group | pear | 1.5.0rc1 | cpe:2.3:a:php_group:pear:1.5.0rc1:*:*:*:*:*:*:* |
| php_group | pear | 1.5.0rc2 | cpe:2.3:a:php_group:pear:1.5.0rc2:*:*:*:*:*:*:* |
| php_group | pear | 1.5.0rc3 | cpe:2.3:a:php_group:pear:1.5.0rc3:*:*:*:*:*:*:* |
| php_group | pear | 1.5.1 | cpe:2.3:a:php_group:pear:1.5.1:*:*:*:*:*:*:* |
| php_group | pear | 1.5.2 | cpe:2.3:a:php_group:pear:1.5.2:*:*:*:*:*:*:* |
| php_group | pear | 1.5.3 | cpe:2.3:a:php_group:pear:1.5.3:*:*:*:*:*:*:* |