Lucene search
MitreCVE-2008-7240HistorySep 17, 2009 - 6:30 p.m.
CVE-2008-7240
2009-09-1718:30:00
CWE-94
CWE-22
mitre
web.nvd.nist.gov
24
cve-2008-7240
directory traversal
vulnerability
linux web shop
lws
php user base 1.3beta
remote code execution
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
High
EPSS
0.008
Percentile
81.6%
Directory traversal vulnerability in include/unverified.inc.php in Linux Web Shop (LWS) php User Base 1.3beta allows remote attackers to include and execute arbitrary local files via the template parameter.
Affected configurations
Node
linuxwebshopphp_user_baseMatch1.3beta
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linuxwebshop | php_user_base | 1.3 | cpe:2.3:a:linuxwebshop:php_user_base:1.3:beta:*:*:*:*:*:* |
Related
exploitdb
exploitdb
PHPUserBase 1.3b - 'unverified.inc.php' Local File Inclusion
2008-02-23 00:00:00
nvd
nvd
CVE-2008-7240
2009-09-17 18:30:00
prion
prion
Directory traversal
2009-09-17 18:30:00
cvelist
cvelist
CVE-2008-7240
2009-09-17 18:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
High
EPSS
0.008
Percentile
81.6%
Related for CVE-2008-7240