Lucene search
HistoryApr 02, 2003 - 5:00 a.m.
CVE-2002-0484
php
move_uploaded_file
remote file uploads
cve-2002-0484
nvd
7.2 High
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.01 Low
EPSS
Percentile
83.7%
move_uploaded_file in PHP does not does not check for the base directory (open_basedir), which could allow remote attackers to upload files to unintended locations on the system.
Affected configurations
Node
phpphpMatch3.0
ORphpphpMatch3.0.1
ORphpphpMatch3.0.2
ORphpphpMatch3.0.3
ORphpphpMatch3.0.4
ORphpphpMatch3.0.5
ORphpphpMatch3.0.6
ORphpphpMatch3.0.7
ORphpphpMatch3.0.8
ORphpphpMatch3.0.9
ORphpphpMatch3.0.10
ORphpphpMatch3.0.11
ORphpphpMatch3.0.12
ORphpphpMatch3.0.13
ORphpphpMatch3.0.14
ORphpphpMatch3.0.15
ORphpphpMatch3.0.16
ORphpphpMatch3.0.17
ORphpphpMatch3.0.18
ORphpphpMatch4.0
ORphpphpMatch4.0.1
ORphpphpMatch4.0.1patch1
ORphpphpMatch4.0.1patch2
ORphpphpMatch4.0.2
ORphpphpMatch4.0.3
ORphpphpMatch4.0.3patch1
ORphpphpMatch4.0.4
ORphpphpMatch4.0.5
ORphpphpMatch4.0.6
ORphpphpMatch4.0.7
ORphpphpMatch4.0.7rc1
ORphpphpMatch4.0.7rc2
ORphpphpMatch4.0.7rc3
ORphpphpMatch4.1.0
ORphpphpMatch4.1.1
ORphpphpMatch4.1.2
7.2 High
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.01 Low
EPSS
Percentile
83.7%
Related for CVE-2002-0484