Lucene search

[email protected]CVE-2005-2179

HistoryJul 11, 2005 - 4:00 a.m.

CVE-2005-2179

2005-07-1104:00:00

[email protected]

web.nvd.nist.gov

cve-2005-2179

php

remote file inclusion

vulnerability

jaws 0.5.2

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7.6 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.8%

JSON

PHP remote file inclusion vulnerability in BlogModel.php in Jaws 0.5.2 and earlier allows remote attackers to execute arbitrary PHP code via the path parameter.

Affected configurations

NVD

Node

jawsjawsMatch0.5.0

jawsjawsMatch0.5.0_beta1

jawsjawsMatch0.5.0_beta2

jawsjawsMatch0.5.1

jawsjawsMatch0.5.2

CPENameOperatorVersion
jaws:jawsjawseq0.5.0
jaws:jawsjawseq0.5.0_beta1
jaws:jawsjawseq0.5.0_beta2
jaws:jawsjawseq0.5.1
jaws:jawsjawseq0.5.2

CPE	Name	Operator	Version
jaws:jaws	jaws	eq	0.5.0
jaws:jaws	jaws	eq	0.5.0_beta1
jaws:jaws	jaws	eq	0.5.0_beta2
jaws:jaws	jaws	eq	0.5.1
jaws:jaws	jaws	eq	0.5.2

References

marc.info/?l=bugtraq&m=112067013827970&w=2

securitytracker.com/id?1014395

www.hardened-php.net/advisory-072005.php

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7.6 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.8%

JSON

Related for CVE-2005-2179

nessus1 openvas1 cvelist1 nvd1