Lucene search

[email protected]CVE-2005-0680

HistoryMar 07, 2005 - 5:00 a.m.

CVE-2005-0680

2005-03-0705:00:00

[email protected]

web.nvd.nist.gov

cve-2005-0680

php

remote file inclusion

download center lite

vulnerability

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

Low

0.027 Low

EPSS

Percentile

90.6%

JSON

PHP remote file inclusion vulnerability in download_center_lite.inc.php for Download Center Lite 1.6 allows remote attackers to execute arbitrary PHP code by modifying the script_root parameter to reference a URL on a remote web server that contains the code.

Affected configurations

NVD

Node

stadtausdownload_center_liteRange≤1.5

References

marc.info/?l=bugtraq&m=110996056601719&w=2

secunia.com/advisories/14513

www.stadtaus.com/forum/p-5895.html

www.stadtaus.com/forum/t-1579.html

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

Low

0.027 Low

EPSS

Percentile

90.6%

JSON

Related for CVE-2005-0680

cvelist1 nvd1