Lucene search
HistoryNov 16, 2005 - 9:17 p.m.
CVE-2002-2200
benjamin lefevre
dobermann forum
php
remote execution
cve-2002-2200
nvd
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.4 High
AI Score
Confidence
Low
0.058 Low
EPSS
Percentile
93.5%
Benjamin Lefevre Dobermann FORUM 0.5 and earlier allows remote attackers to remotely include and execute malicious PHP files via the “subpath” variablein (1) entete.php, (2) enteteacceuil.php, (3) index.php, or (4) newtopic.php.
Affected configurations
Node
benjamin_lefevredobermann_forumMatch0.1
ORbenjamin_lefevredobermann_forumMatch0.2
ORbenjamin_lefevredobermann_forumMatch0.3
ORbenjamin_lefevredobermann_forumMatch0.4
ORbenjamin_lefevredobermann_forumMatch0.5
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.4 High
AI Score
Confidence
Low
0.058 Low
EPSS
Percentile
93.5%
Related for CVE-2002-2200