Lucene search

MitreCVE-2008-3721

HistoryAug 20, 2008 - 4:41 p.m.

CVE-2008-3721

2008-08-2016:41:00

CWE-94

mitre

web.nvd.nist.gov

php

remote file inclusion

vulnerability

deeemm cms

dmcms

nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

High

EPSS

0.008

Percentile

81.6%

JSON

PHP remote file inclusion vulnerability in user_language.php in DeeEmm CMS (DMCMS) 0.7.4 allows remote attackers to execute arbitrary PHP code via a URL in the language_dir parameter.

Affected configurations

Nvd

Node

deeemmdmcmsMatch0.7.4

VendorProductVersionCPE
deeemmdmcms0.7.4cpe:2.3:a:deeemm:dmcms:0.7.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
deeemm	dmcms	0.7.4	cpe:2.3:a:deeemm:dmcms:0.7.4:::::::*

References

securityreason.com/securityalert/4169

www.vupen.com/english/advisories/2008/2411

exchange.xforce.ibmcloud.com/vulnerabilities/44505

www.exploit-db.com/exploits/6250

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

High

EPSS

0.008

Percentile

81.6%

JSON

Related for CVE-2008-3721