Lucene search

[email protected]CVE-2008-0743

HistoryFeb 13, 2008 - 2:00 a.m.

CVE-2008-0743

2008-02-1302:00:00

CWE-94

[email protected]

web.nvd.nist.gov

security

vulnerability

php

remote file inclusion

joovili 2.1

nvd

cve-2008-0743

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.027 Low

EPSS

Percentile

90.6%

JSON

PHP remote file inclusion vulnerability in members_help.php in Joovili 2.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the hlp parameter.

Affected configurations

NVD

Node

joovilijooviliRange≤2.1

CPENameOperatorVersion
joovili:joovilijoovilile2.1

CPE	Name	Operator	Version
joovili:joovili	joovili	le	2.1

References

securityreason.com/securityalert/3640

www.securityfocus.com/archive/1/487779/100/0/threaded

www.securityfocus.com/bid/27693

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.027 Low

EPSS

Percentile

90.6%

JSON

Related for CVE-2008-0743

cvelist1 nvd1 prion1