{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-03T16:19:20.948","vulnerabilities":[{"cve":{"id":"CVE-2013-7300","sourceIdentifier":"cve@mitre.org","published":"2014-02-02T00:55:04.740","lastModified":"2026-04-29T01:13:23.040","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Absolute path traversal vulnerability in cantata before 1.2.2 allows local users to read arbitrary files via a full pathname in a request to the internal httpd server.  NOTE: this vulnerability can be leveraged by remote attackers using CVE-2013-7301."},{"lang":"es","value":"Vulnerabilidad de recorrido de directorio absoluto en Cantata anterior a 1.2.2 permite a usuarios locales leer archivos arbitrarios a través de una ruta completa en una solicitud al servidor httpd interno. NOTA: Esta vulnerabilidad puede ser aprovechada por atacantes remotos utilizando CVE-2013-7301."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:*:*:*:*:*:*:*:*","versionEndIncluding":"1.2.1","matchCriteriaId":"9BCEC906-3CD9-4D31-AD59-952D01EEF01B"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:0.7.0:*:*:*:*:*:*:*","matchCriteriaId":"8A2B9A20-1A76-4354-8DB7-98D924B733C3"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:0.7.1:*:*:*:*:*:*:*","matchCriteriaId":"73D54787-33BC-4132-8D6A-66B2BAF9EB5C"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:0.8.0:*:*:*:*:*:*:*","matchCriteriaId":"F35DE3AA-6AC9-4D4F-8CB6-08DC33F4AFB5"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:0.8.1:*:*:*:*:*:*:*","matchCriteriaId":"5F7971A1-DE64-4964-9D82-E5900D6E247B"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:0.8.2:*:*:*:*:*:*:*","matchCriteriaId":"C044EF1B-3F29-4927-A007-ACC8D1018797"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:0.8.3:*:*:*:*:*:*:*","matchCriteriaId":"BD740EFA-0578-4D67-A0C6-06631C522F0B"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:0.8.3.1:*:*:*:*:*:*:*","matchCriteriaId":"CB1CAC0C-096A-4412-BE53-4B97683CEA2A"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:0.9.0:*:*:*:*:*:*:*","matchCriteriaId":"5BA73E11-4D8D-4DF7-B829-1CFAC0EFAC50"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:0.9.1:*:*:*:*:*:*:*","matchCriteriaId":"B4FBBF1C-302E-4092-954B-BA43AE6EC21D"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:0.9.2:*:*:*:*:*:*:*","matchCriteriaId":"D9336F9C-8300-4BC9-90D0-827D735EBB10"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:1.0.0:*:*:*:*:*:*:*","matchCriteriaId":"E0284204-FCB5-4A7F-B1B3-5A7BF8907297"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:1.0.1:*:*:*:*:*:*:*","matchCriteriaId":"03C45090-F4D5-40AA-A0F7-B2852A0A411F"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:1.0.2:*:*:*:*:*:*:*","matchCriteriaId":"F8D1C8DD-B246-45DC-A27B-AED532771184"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:1.0.3:*:*:*:*:*:*:*","matchCriteriaId":"6054C983-BB3A-445E-A3A3-D4628A578908"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:1.1.0:*:*:*:*:*:*:*","matchCriteriaId":"5D7109EE-15CB-4E0B-B89D-A49B6B7B85EA"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:1.1.1:*:*:*:*:*:*:*","matchCriteriaId":"4DB719D6-F5F7-4DEB-A1B5-CD117AC71237"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:1.1.2:*:*:*:*:*:*:*","matchCriteriaId":"907A7F53-A572-48CB-B962-46E2D7FCF4A6"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:1.1.3:*:*:*:*:*:*:*","matchCriteriaId":"2C05B58D-3F27-4A5A-B9F1-FAD21CA4A059"},{"vulnerable":true,"criteria":"cpe:2.3:a:craig_drummond:cantata:1.2.0:*:*:*:*:*:*:*","matchCriteriaId":"FBDD5472-BD96-4C20-93D5-5FFF5DDB171D"}]}]}],"references":[{"url":"http://seclists.org/oss-sec/2014/q1/121","source":"cve@mitre.org"},{"url":"http://seclists.org/oss-sec/2014/q1/124","source":"cve@mitre.org"},{"url":"https://code.google.com/p/cantata/issues/detail?id=356","source":"cve@mitre.org","tags":["Exploit"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/90580","source":"cve@mitre.org"},{"url":"http://seclists.org/oss-sec/2014/q1/121","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://seclists.org/oss-sec/2014/q1/124","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://code.google.com/p/cantata/issues/detail?id=356","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/90580","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}