Lucene search

[email protected]CVE-2001-1468

HistoryApr 21, 2005 - 4:00 a.m.

CVE-2001-1468

2005-04-2104:00:00

[email protected]

web.nvd.nist.gov

cve-2001-1468

phpsecurepages

php code

remote file inclusion

vulnerability

arbitrary code execution

remote attackers

nvd

7.6 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.011 Low

EPSS

Percentile

84.4%

JSON

PHP remote file inclusion vulnerability in checklogin.php in phpSecurePages 0.24 and earlier allows remote attackers to execute arbitrary PHP code by modifying the cfgProgDir parameter to reference a URL on a remote web server that contains the code.

Affected configurations

NVD

Node

secure_realityphpsecurepagesMatch0.11_beta

secure_realityphpsecurepagesMatch0.12_beta

secure_realityphpsecurepagesMatch0.13_beta

secure_realityphpsecurepagesMatch0.14_beta

secure_realityphpsecurepagesMatch0.15_beta

secure_realityphpsecurepagesMatch0.16_beta

secure_realityphpsecurepagesMatch0.17_beta

secure_realityphpsecurepagesMatch0.18_beta

secure_realityphpsecurepagesMatch0.19_beta

secure_realityphpsecurepagesMatch0.20_beta

secure_realityphpsecurepagesMatch0.21_beta

secure_realityphpsecurepagesMatch0.22_beta

secure_realityphpsecurepagesMatch0.23_beta

secure_realityphpsecurepagesMatch0.24_beta

CPENameOperatorVersion
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.11_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.12_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.13_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.14_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.15_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.16_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.17_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.18_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.19_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.20_beta

CPE	Name	Operator	Version
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.11_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.12_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.13_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.14_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.15_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.16_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.17_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.18_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.19_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.20_beta

Rows per page:

1-10 of 141

References

securitytracker.com/id?1001408

www.kb.cert.org/vuls/id/391347

www.securityfocus.com/bid/2970

exchange.xforce.ibmcloud.com/vulnerabilities/6774

7.6 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.011 Low

EPSS

Percentile

84.4%

JSON

Related for CVE-2001-1468

nvd2 cvelist2 checkpoint_advisories2 cve1