Lucene search
HistoryJan 08, 2008 - 7:46 p.m.
CVE-2008-0139
cve
2008
0139
eval injection
loudblog
php code
template parameter
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.009 Low
EPSS
Percentile
83.0%
Eval injection vulnerability in loudblog/inc/parse_old.php in Loudblog 0.8.0 and earlier allows remote attackers to execute arbitrary PHP code via the template parameter.
Affected configurations
Node
loudblogloudblogRange≤0.8.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| loudblog:loudblog | loudblog | le | 0.8.0 |
Related
nvd
nvd
CVE-2008-0139
2008-01-08 19:46:00
nessus
nessus
canvas
canvas
Immunity Canvas: LOUDBLOG_EXEC
2008-01-08 19:46:00
prion
prion
Sql injection
2008-01-08 19:46:00
cvelist
cvelist
CVE-2008-0139
2008-01-08 19:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.009 Low
EPSS
Percentile
83.0%
Related for CVE-2008-0139