Lucene search

[email protected]CVE-2005-2251

HistoryJul 13, 2005 - 4:00 a.m.

CVE-2005-2251

2005-07-1304:00:00

[email protected]

web.nvd.nist.gov

cve-2005-2251

php

remote file inclusion

phpsecurepages

phpsp

vulnerability

secure.php

cfgprogdir

arbitrary code

cve-2001-1468

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.657 Medium

EPSS

Percentile

97.9%

JSON

PHP remote file inclusion vulnerability in secure.php in PHPSecurePages (phpSP) 0.28beta and earlier allows remote attackers to execute arbitrary code via the cfgProgDir parameter, a variant of CVE-2001-1468.

Affected configurations

NVD

Node

secure_realityphpsecurepagesMatch0.11_beta

secure_realityphpsecurepagesMatch0.12_beta

secure_realityphpsecurepagesMatch0.13_beta

secure_realityphpsecurepagesMatch0.14_beta

secure_realityphpsecurepagesMatch0.15_beta

secure_realityphpsecurepagesMatch0.16_beta

secure_realityphpsecurepagesMatch0.17_beta

secure_realityphpsecurepagesMatch0.18_beta

secure_realityphpsecurepagesMatch0.19_beta

secure_realityphpsecurepagesMatch0.20_beta

secure_realityphpsecurepagesMatch0.21_beta

secure_realityphpsecurepagesMatch0.22_beta

secure_realityphpsecurepagesMatch0.23_beta

secure_realityphpsecurepagesMatch0.24_beta

secure_realityphpsecurepagesMatch0.25_beta

secure_realityphpsecurepagesMatch0.26_beta

secure_realityphpsecurepagesMatch0.27_beta

secure_realityphpsecurepagesMatch0.28_beta

CPENameOperatorVersion
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.11_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.12_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.13_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.14_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.15_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.16_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.17_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.18_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.19_beta
secure_reality:phpsecurepagessecure reality phpsecurepageseq0.20_beta

CPE	Name	Operator	Version
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.11_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.12_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.13_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.14_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.15_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.16_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.17_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.18_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.19_beta
secure_reality:phpsecurepages	secure reality phpsecurepages	eq	0.20_beta

Rows per page:

1-10 of 181

References

secunia.com/advisories/15994

securitytracker.com/id?1014410

www.securityfocus.com/bid/14201

exchange.xforce.ibmcloud.com/vulnerabilities/29263

www.exploit-db.com/exploits/2452

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.657 Medium

EPSS

Percentile

97.9%

JSON

Related for CVE-2005-2251

cvelist2 nvd2 nessus1 checkpoint_advisories2 cve1