Lucene search
HistoryApr 07, 2009 - 2:17 p.m.
CVE-2008-6635
cve-2008-6635
php
remote file inclusion
geody labs dagger
security vulnerability
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.3%
PHP remote file inclusion vulnerability in skins/default.php in Geody Labs Dagger - The Cutting Edge r12feb2008, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the dir_inc parameter.
Affected configurations
Node
geodydaggerMatchr12feb2008
| CPE | Name | Operator | Version |
|---|---|---|---|
| geody:dagger | geody dagger | eq | r12feb2008 |
Related
nvd
nvd
CVE-2008-6635
2009-04-07 14:17:17
prion
prion
Remote file inclusion
2009-04-07 14:17:00
cvelist
cvelist
CVE-2008-6635
2009-04-07 10:00:00
openvas
openvas
Dagger RFI Vulnerability (Mar 2009) - Active Check
2009-03-16 00:00:00
Dagger 'skins/default.php' Remote File Include Vulnerability
2009-03-16 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.3%
Related for CVE-2008-6635