Lucene search

K
cve[email protected]CVE-2008-2216
HistoryMay 14, 2008 - 6:20 p.m.

CVE-2008-2216

2008-05-1418:20:00
CWE-264
web.nvd.nist.gov
17
vulnerability
file upload
pbcs
remote authenticated
cve-2008-2216

6.4 Medium

AI Score

Confidence

Low

9 High

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

71.6%

Unrestricted file upload vulnerability in src/yopy_upload.php in Project-Based Calendaring System (PBCS) 0.7.1 allows remote authenticated users to upload arbitrary files to tmp/uploads.

Affected configurations

NVD
Node
pbcsproject-based_calendaring__systemMatch0.7.1

6.4 Medium

AI Score

Confidence

Low

9 High

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

71.6%

Related for CVE-2008-2216