Lucene search

K
cve[email protected]CVE-2010-0953
HistoryMar 10, 2010 - 8:14 p.m.

CVE-2010-0953

2010-03-1020:14:34
CWE-22
web.nvd.nist.gov
34
cve-2010-0953
directory traversal
mod.php
phpcoin 1.2.1
remote attackers
arbitrary files

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.8 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

79.8%

Directory traversal vulnerability in mod.php in phpCOIN 1.2.1 allows remote attackers to read arbitrary files via a … (dot dot) in the mod parameter.

Affected configurations

NVD
Node
phpcoinphpcoinMatch1.2.1
CPENameOperatorVersion
phpcoin:phpcoinphpcoineq1.2.1

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.8 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

79.8%

Related for CVE-2010-0953