Lucene search

[email protected]CVE-2008-0143

HistoryJan 08, 2008 - 7:46 p.m.

CVE-2008-0143

2008-01-0819:46:00

CWE-94

[email protected]

web.nvd.nist.gov

cve-2008-0143

php

remote file inclusion

vulnerability

samphpweb

sam broadcaster

nvd

7.7 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.052 Low

EPSS

Percentile

93.0%

JSON

PHP remote file inclusion vulnerability in common/db.php in samPHPweb, possibly 4.2.2 and others, as provided with SAM Broadcaster, allows remote attackers to execute arbitrary PHP code via a URL in the commonpath parameter.

Affected configurations

NVD

Node

spacial_audio_solutionssam_broadcaster

spacial_audio_solutionssamphpweb

CPENameOperatorVersion
spacial_audio_solutions:sam_broadcasterspacial audio solutions sam broadcastereq*
spacial_audio_solutions:samphpwebspacial audio solutions samphpwebeq*

CPE	Name	Operator	Version
spacial_audio_solutions:sam_broadcaster	spacial audio solutions sam broadcaster	eq	*
spacial_audio_solutions:samphpweb	spacial audio solutions samphpweb	eq	*

References

secunia.com/advisories/28355

www.securityfocus.com/bid/27137

www.spacialaudio.com/news/index.html

exchange.xforce.ibmcloud.com/vulnerabilities/39397

www.exploit-db.com/exploits/4834

7.7 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.052 Low

EPSS

Percentile

93.0%

JSON

Related for CVE-2008-0143

cvelist1 prion1 nvd1