Lucene search
HistoryFeb 20, 2005 - 5:00 a.m.
CVE-2004-1660
cve
2004
1660
php
remote
file inclusion
vulnerability
cutenews
show_archives.php
show_news.php
execute
arbitrary
code
7.7 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.016 Low
EPSS
Percentile
87.3%
PHP remote file inclusion vulnerability in CuteNews 1.3.6 and earlier allows remote attackers to execute arbitrary PHP code via the cutepath parameter to (1) show_archives.php or (2) show_news.php.
Affected configurations
Node
cutephpcutenewsRange≤1.3.6
| CPE | Name | Operator | Version |
|---|---|---|---|
| cutephp:cutenews | cutephp cutenews | le | 1.3.6 |
Related
nvd
nvd
CVE-2004-1660
2004-08-30 04:00:00
CVE-2007-1153
2007-03-02 21:18:00
cvelist
cvelist
CVE-2004-1660
2005-02-20 05:00:00
CVE-2007-1153
2007-02-27 18:00:00
cve
cve
CVE-2007-1153
2007-03-02 21:18:00
prion
prion
Remote file inclusion
2007-03-02 21:18:00
7.7 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.016 Low
EPSS
Percentile
87.3%
Related for CVE-2004-1660