Lucene search
HistoryApr 17, 2008 - 7:05 p.m.
CVE-2008-1876
cve-2008-1876
php
remote file inclusion
visualpic 0.3.1
security vulnerability
nvd
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
High
0.025 Low
EPSS
Percentile
90.2%
PHP remote file inclusion vulnerability in index.php in VisualPic 0.3.1 allows remote attackers to execute arbitrary PHP code via a URL in the _CONFIG[files][functions_page] parameter.
Affected configurations
Node
snarkyvisualpicMatch0.3.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| snarky:visualpic | snarky visualpic | eq | 0.3.1 |
Related
nvd
nvd
CVE-2008-1876
2008-04-17 19:05:00
prion
prion
Remote file inclusion
2008-04-17 19:05:00
canvas
canvas
Immunity Canvas: VISUALPIC_INCLUDE
2008-04-17 19:05:00
cvelist
cvelist
CVE-2008-1876
2008-04-17 17:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
High
0.025 Low
EPSS
Percentile
90.2%
Related for CVE-2008-1876