Lucene search

[email protected]CVE-2010-2127

HistoryJun 01, 2010 - 9:30 p.m.

CVE-2010-2127

2010-06-0121:30:01

CWE-94

[email protected]

web.nvd.nist.gov

cve-2010-2127

php

remote file inclusion

jv2 folder gallery 3.1

security vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.8 High

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.8%

JSON

PHP remote file inclusion vulnerability in gallery.php in JV2 Folder Gallery 3.1 allows remote attackers to execute arbitrary PHP code via a URL in the lang_file parameter.

Affected configurations

NVD

Node

jv2designjv2_folder_galleryMatch3.1

CPENameOperatorVersion
jv2design:jv2_folder_galleryjv2design jv2 folder galleryeq3.1

CPE	Name	Operator	Version
jv2design:jv2_folder_gallery	jv2design jv2 folder gallery	eq	3.1

References

packetstormsecurity.org/1005-exploits/jv2foldergallery-rfi.txt

www.exploit-db.com/exploits/12688

www.securityfocus.com/bid/40339

exchange.xforce.ibmcloud.com/vulnerabilities/58807

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.8 High

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.8%

JSON

Related for CVE-2010-2127

openvas2 prion1 cvelist1 nvd1