Lucene search

[email protected]CVE-2008-1126

HistoryMar 03, 2008 - 10:44 p.m.

CVE-2008-1126

2008-03-0322:44:00

CWE-94

[email protected]

web.nvd.nist.gov

cve

2008

1126

php

remote file inclusion

vulnerability

barryvan compo manager

7.5 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.7%

JSON

PHP remote file inclusion vulnerability in main.php in Barryvan Compo Manager 0.3 allows remote attackers to execute arbitrary PHP code via a URL in the pageURL parameter.

Affected configurations

NVD

Node

barryvan_compobarryvan_compo_managerMatch0.3

CPENameOperatorVersion
barryvan_compo:barryvan_compo_managerbarryvan compo barryvan compo managereq0.3

CPE	Name	Operator	Version
barryvan_compo:barryvan_compo_manager	barryvan compo barryvan compo manager	eq	0.3

References

www.securityfocus.com/bid/28035

www.exploit-db.com/exploits/5202

7.5 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.7%

JSON

Related for CVE-2008-1126

nvd1 prion1 canvas1 cvelist1