Lucene search

[email protected]CVE-2008-6545

HistoryMar 30, 2009 - 1:30 a.m.

CVE-2008-6545

2009-03-3001:30:00

CWE-94

[email protected]

web.nvd.nist.gov

cve-2008-6545

php

remote file inclusion

vulnerability

web server creator

web portal

7.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.02 Low

EPSS

Percentile

88.9%

JSON

PHP remote file inclusion vulnerability in news/include/createdb.php in Web Server Creator Web Portal 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the langfile parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

NVD

Node

comscriptsweb_server_creator_web_portalMatch0.1

CPENameOperatorVersion
comscripts:web_server_creator_web_portalcomscripts web server creator web portaleq0.1

CPE	Name	Operator	Version
comscripts:web_server_creator_web_portal	comscripts web server creator web portal	eq	0.1

References

www.osvdb.org/53093

www.securityfocus.com/bid/28631

exchange.xforce.ibmcloud.com/vulnerabilities/43555

7.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.02 Low

EPSS

Percentile

88.9%

JSON

Related for CVE-2008-6545

prion1 nvd1 cvelist1