Lucene search

[email protected]CVE-2008-2769

HistoryJun 18, 2008 - 10:41 p.m.

CVE-2008-2769

2008-06-1822:41:00

CWE-94

[email protected]

web.nvd.nist.gov

php

remote file inclusion

vulnerability

simple machines

phpraider 1.0.6

phpraider 1.0.7

nvd

8.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.5%

JSON

PHP remote file inclusion vulnerability in authentication/smf/smf.functions.php in Simple Machines phpRaider 1.0.6 and 1.0.7 allows remote attackers to execute arbitrary PHP code via a URL in the pConfig_auth[smf_path] parameter.

CPENameOperatorVersion
phpraider:phpraiderphpraidereq1.0.6
phpraider:phpraiderphpraidereq1.0.7

CPE	Name	Operator	Version
phpraider:phpraider	phpraider	eq	1.0.6
phpraider:phpraider	phpraider	eq	1.0.7

References

forums.phpraider.com/showthread.php?t=1087#v1_0_7b_-_May_29__2008

securityreason.com/securityalert/3947

www.securityfocus.com/archive/1/493275/100/0/threaded

exchange.xforce.ibmcloud.com/vulnerabilities/42996

8.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.5%

JSON

Related for CVE-2008-2769

prion1 cvelist1