Lucene search
HistorySep 08, 2009 - 11:30 p.m.
CVE-2008-7183
cve
2008
7183
php
remote file inclusion
vulnerability
eva cms 2.3.1
nvd
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
77.8%
PHP remote file inclusion vulnerability in eva/index.php in EVA CMS 2.3.1, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the eva[caminho] parameter to index.php.
Affected configurations
Node
evacmseva_cmsMatch2.3.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| evacms:eva_cms | evacms eva cms | eq | 2.3.1 |
Related
cvelist
cvelist
CVE-2008-7183
2009-09-08 23:00:00
prion
prion
Remote file inclusion
2009-09-08 23:30:00
nvd
nvd
CVE-2008-7183
2009-09-08 23:30:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
77.8%
Related for CVE-2008-7183