Lucene search

[email protected]CVE-2004-0734

HistoryJul 27, 2004 - 4:00 a.m.

CVE-2004-0734

2004-07-2704:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2004-0734

nvd

web application

remote code execution

vulnerability

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.21 Low

EPSS

Percentile

96.3%

JSON

Web_Store.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the page parameter.

CPENameOperatorVersion
extropia:extropia_webstoreextropia extropia webstoreeq1.0
extropia:extropia_webstoreextropia extropia webstoreeq2.0

CPE	Name	Operator	Version
extropia:extropia_webstore	extropia extropia webstore	eq	1.0
extropia:extropia_webstore	extropia extropia webstore	eq	2.0

References

marc.info/?l=bugtraq&m=109008402715874&w=2

www.securityfocus.com/bid/10744

exchange.xforce.ibmcloud.com/vulnerabilities/16710

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.21 Low

EPSS

Percentile

96.3%

JSON

Related for CVE-2004-0734

openvas1 nessus1