Lucene search
HistoryDec 10, 2008 - 12:30 a.m.
CVE-2008-5305
twiki
remote code execution
vulnerability
cve-2008-5305
nvd
6.6 Medium
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.048 Low
EPSS
Percentile
92.7%
Eval injection vulnerability in TWiki before 4.2.4 allows remote attackers to execute arbitrary Perl code via the %SEARCH{}% variable.
Affected configurations
Node
twikitwikiRange≤4.2.3
ORtwikitwikiMatch4.0.0
ORtwikitwikiMatch4.0.1
ORtwikitwikiMatch4.0.2
ORtwikitwikiMatch4.0.3
ORtwikitwikiMatch4.0.4
ORtwikitwikiMatch4.0.5
ORtwikitwikiMatch4.1.0
ORtwikitwikiMatch4.1.1
ORtwikitwikiMatch4.1.2
ORtwikitwikiMatch4.2.0
ORtwikitwikiMatch4.2.1
ORtwikitwikiMatch4.2.2
Related
ubuntucve
ubuntucve
CVE-2008-5305
2008-12-10 00:00:00
cvelist
cvelist
CVE-2008-5305
2008-12-10 00:00:00
prion
prion
Design/Logic Flaw
2008-12-10 00:30:00
nvd
nvd
CVE-2008-5305
2008-12-10 00:30:00
openvas
openvas
FreeBSD Ports: twiki
2009-01-02 00:00:00
FreeBSD Ports: twiki
2009-01-02 00:00:00
TWiki XSS and Command Execution Vulnerabilities
2008-12-16 00:00:00
nessus
nessus
freebsd
freebsd
twiki -- multiple vulnerabilities
2008-12-05 00:00:00
6.6 Medium
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.048 Low
EPSS
Percentile
92.7%
Related for CVE-2008-5305