Lucene search
HistorySep 04, 2009 - 10:30 a.m.
CVE-2008-7163
cve-2008-7163
directory traversal
sinecms
remote code execution
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.4 High
AI Score
Confidence
Low
0.008 Low
EPSS
Percentile
82.0%
Directory traversal vulnerability in mods/Integrated/index.php in SineCMS 2.3.5 and earlier, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via the sine[config][index_main] parameter.
Affected configurations
Node
sinecmssinecmsRange≤2.3.5
ORsinecmssinecmsMatch2.0
ORsinecmssinecmsMatch2.1
ORsinecmssinecmsMatch2.1.1
ORsinecmssinecmsMatch2.2
ORsinecmssinecmsMatch2.2.1
ORsinecmssinecmsMatch2.3.2
ORsinecmssinecmsMatch2.3.4
Related
openvas
openvas
SineCMS Remote File Inclusion Vulnerability
2009-09-10 00:00:00
SineCMS Remote File Inclusion Vulnerability
2009-09-10 00:00:00
nvd
nvd
CVE-2008-7163
2009-09-04 10:30:01
prion
prion
Directory traversal
2009-09-04 10:30:00
cvelist
cvelist
CVE-2008-7163
2009-09-04 10:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.4 High
AI Score
Confidence
Low
0.008 Low
EPSS
Percentile
82.0%
Related for CVE-2008-7163