Lucene search

K
cve[email protected]CVE-2008-6486
HistoryMar 18, 2009 - 3:30 p.m.

CVE-2008-6486

2009-03-1815:30:00
CWE-94
web.nvd.nist.gov
19
cve-2008-6486
php
remote file inclusion
vulnerability
sharedlog
register_globals
nvd

7.8 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.6%

PHP remote file inclusion vulnerability in slideshow_uploadvideo.content.php in SharedLog, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[root_dir] parameter.

Affected configurations

NVD
Node
shatmsharedlog
CPENameOperatorVersion
shatm:sharedlogshatm sharedlogeq*

7.8 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.6%

Related for CVE-2008-6486