Lucene search

[email protected]CVE-2008-1755

HistoryApr 11, 2008 - 9:05 p.m.

CVE-2008-1755

2008-04-1121:05:00

CWE-22

[email protected]

web.nvd.nist.gov

cve-2008-1755

nvd

security

vulnerability

world of phaos

directory traversal

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.7 Medium

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

85.8%

JSON

Directory traversal vulnerability in the showSource function in showSource.php in World of Phaos 4.0.1 allows remote attackers to read arbitrary files via directory traversal sequences in the file parameter.

Affected configurations

NVD

Node

zekewalkerworld_of_phaosMatch4.0.1

CPENameOperatorVersion
zekewalker:world_of_phaoszekewalker world of phaoseq4.0.1

CPE	Name	Operator	Version
zekewalker:world_of_phaos	zekewalker world of phaos	eq	4.0.1

References

www.osvdb.org/44387

www.securityfocus.com/bid/28719

exchange.xforce.ibmcloud.com/vulnerabilities/41741

www.exploit-db.com/exploits/5420

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.7 Medium

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

85.8%

JSON

Related for CVE-2008-1755

cvelist1 nvd1 prion1