Lucene search
MitreCVE-2008-6103HistoryFeb 10, 2009 - 6:30 p.m.
CVE-2008-6103
2009-02-1018:30:00
CWE-94
mitre
web.nvd.nist.gov
27
php
remote file inclusion
vulnerability
a4desk event calendar
nvd
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.8
Confidence
Low
EPSS
0.028
Percentile
90.8%
PHP remote file inclusion vulnerability in index.php in A4Desk Event Calendar, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the v parameter.
Affected configurations
Node
a4deska4desk_flash_event_calendar
| Vendor | Product | Version | CPE |
|---|---|---|---|
| a4desk | a4desk_flash_event_calendar | * | cpe:2.3:a:a4desk:a4desk_flash_event_calendar:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2008-6103
2009-02-10 18:00:00
prion
prion
Remote file inclusion
2009-02-10 18:30:00
nvd
nvd
CVE-2008-6103
2009-02-10 18:30:00
exploitdb
exploitdb
A4Desk Event Calendar - 'v' Remote File Inclusion
2008-09-30 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.8
Confidence
Low
EPSS
0.028
Percentile
90.8%
Related for CVE-2008-6103