Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2003-1251
HistoryNov 16, 2005 - 7:37 a.m.

CVE-2003-1251

2005-11-1607:37:00
mitre
web.nvd.nist.gov
24
cve
remote code execution
n/x 2002
security vulnerability
php code

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

High

EPSS

0.032

Percentile

91.3%

JSON

The (1) menu.inc.php, (2) datasets.php and (3) mass_operations.inc.php (mistakenly referred to as mass_opeations.inc.php) scripts in N/X 2002 allow remote attackers to execute arbitrary PHP code via a c_path that references a URL on a remote web server that contains the code.

Affected configurations

Nvd
Node
nxn_x_web_content_management_system_2002Matchprerelease1
VendorProductVersionCPE
nxn_x_web_content_management_system_2002prerelease1cpe:2.3:a:nx:n_x_web_content_management_system_2002:prerelease1:*:*:*:*:*:*:*

Related

cvelist 1
exploitdb 2
nvd 1
nessus 1
cvelist
cvelist
CVE-2003-1251
2005-11-16 07:37:00
exploitdb
exploitdb
N/X Web Content Management System 2002 Prerelease 1 - 'datasets.php?c_path' Local File Inclusion
2003-01-02 00:00:00
N/X Web Content Management System 2002 Prerelease 1 - 'menu.inc.php?c_path' Remote File Inclusion
2003-01-02 00:00:00
nvd
nvd
CVE-2003-1251
2003-12-31 05:00:00
nessus
nessus
N/X Web Content Management Multiple Script Remote File Inclusion
2003-02-17 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

High

EPSS

0.032

Percentile

91.3%

JSON
Related for CVE-2003-1251
cvelist1exploitdb2nvd1nessus1