Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2005-3010
HistorySep 21, 2005 - 4:00 a.m.

CVE-2005-3010

2005-09-2104:00:00
mitre
www.cve.org
3

AI Score

7.8

Confidence

Low

EPSS

0.029

Percentile

91.0%

JSON

Direct static code injection vulnerability in the flood protection feature in inc/shows.inc.php in CuteNews 1.4.0 and earlier allows remote attackers to execute arbitrary PHP code via the HTTP_CLIENT_IP header (Client-Ip), which is injected into data/flood.db.php.

Related

cve 1
nessus 1
exploitdb 1
nvd 1
cve
cve
CVE-2005-3010
2005-09-21 20:03:00
nessus
nessus
CuteNews flood.db.php Client-IP HTTP Header Arbitrary Code Injection
2005-09-19 00:00:00
exploitdb
exploitdb
CuteNews 1.4.0 - Shell Injection / Remote Command Execution
2005-09-17 00:00:00
nvd
nvd
CVE-2005-3010
2005-09-21 20:03:00

AI Score

7.8

Confidence

Low

EPSS

0.029

Percentile

91.0%

JSON
Related for CVELIST:CVE-2005-3010
cve1nessus1exploitdb1nvd1