ID CVE-2001-1299 Type cve Reporter NVD Modified 2008-09-05T16:26:11
Description
Zorbat Zorbstats PHP script before 0.9 allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
{"href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2001-1299", "history": [], "references": ["http://www.iss.net/security_center/static/7215.php", "http://www.kb.cert.org/vuls/id/JARL-53RJKV", "http://www.kb.cert.org/vuls/id/847803", "http://archives.neohapsis.com/archives/bugtraq/2001-10/0012.html", "http://www.come.to/zorbat/", "http://www.securityfocus.com/bid/3386"], "lastseen": "2016-09-03T03:11:08", "bulletinFamily": "NVD", "title": "CVE-2001-1299", "cpe": ["cpe:/a:zorbat:zorbstats:0.8"], "viewCount": 0, "id": "CVE-2001-1299", "hash": "c02205306723fe9e414f1e95244fe22c1f589b552bf6814593c6f35c4792b32c", "description": "Zorbat Zorbstats PHP script before 0.9 allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.", "edition": 1, "assessment": {"name": "", "href": "", "system": ""}, "cvelist": ["CVE-2001-1299"], "scanner": [], "modified": "2008-09-05T16:26:11", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "objectVersion": "1.2", "reporter": "NVD", "type": "cve", "published": "2001-10-02T00:00:00", "enchantments": {"score": {"value": 5.0, "vector": "NONE", "modified": "2016-09-03T03:11:08"}, "vulnersScore": 5.0}}
