Lucene search

K
cve[email protected]CVE-2008-1760
HistoryApr 12, 2008 - 8:05 p.m.

CVE-2008-1760

2008-04-1220:05:00
CWE-94
web.nvd.nist.gov
16
cve-2008-1760
php
remote file inclusion
blogator-script
url
code execution
security vulnerability

7.7 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.04 Low

EPSS

Percentile

92.1%

Multiple PHP remote file inclusion vulnerabilities in Blogator-script before 1.01 allow remote attackers to execute arbitrary PHP code via a URL in the incl_page parameter in (1) struct_admin.php, (2) struct_admin_blog.php, and (3) struct_main.php in _blogadata/include.

Affected configurations

NVD
Node
blogator-scriptblogator-scriptRange1.00
OR
blogator-scriptblogator-scriptMatch0.90
OR
blogator-scriptblogator-scriptMatch0.91
OR
blogator-scriptblogator-scriptMatch0.92
OR
blogator-scriptblogator-scriptMatch0.93
OR
blogator-scriptblogator-scriptMatch0.95

7.7 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.04 Low

EPSS

Percentile

92.1%

Related for CVE-2008-1760