Lucene search

[email protected]CVE-2005-4084

HistoryDec 08, 2005 - 1:03 a.m.

CVE-2005-4084

2005-12-0801:03:00

[email protected]

web.nvd.nist.gov

phpbb

extreme styles

xs_edit.php

installation path

security vulnerability

nvd

cve-2005-4084

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

75.0%

JSON

xs_edit.php in the phpBB eXtreme Styles module 2.2.1 and earlier allows remote attackers to obtain the installation path of the application via an invalid viewbackup parameter.

Affected configurations

NVD

Node

phpbb_stylesphpbb_extreme_stylesRange≤2.2.1

CPENameOperatorVersion
phpbb_styles:phpbb_extreme_stylesphpbb styles phpbb extreme stylesle2.2.1

CPE	Name	Operator	Version
phpbb_styles:phpbb_extreme_styles	phpbb styles phpbb extreme styles	le	2.2.1

References

www.securityfocus.com/archive/1/418518/100/0/threaded

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

75.0%

JSON

Related for CVE-2005-4084

cvelist1 nvd1