Lucene search
HistoryAug 10, 2008 - 8:41 p.m.
CVE-2008-3575
cve-2008-3575
php
remote file inclusion
vulnerability
ezcontents cms
7.7 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.03 Low
EPSS
Percentile
90.7%
PHP remote file inclusion vulnerability in modules/calendar/minicalendar.php in ezContents CMS allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[gsLanguage] parameter, a different vector than CVE-2006-4477 and CVE-2004-0132.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ezcontents:ezcontents_cms | ezcontents ezcontents cms | eq | * |
Related
prion
prion
Remote file inclusion
2008-08-10 20:41:00
cve
cve
CVE-2004-0132
2004-03-03 05:00:00
CVE-2006-4477
2006-08-31 21:04:00
securityvulns
securityvulns
PHP Code Injection Vulnerabilities in ezContents 2.0.2 and prior
2004-02-11 00:00:00
7.7 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.03 Low
EPSS
Percentile
90.7%
Related for CVE-2008-3575