Lucene search

K

MitreCVELIST:CVE-2008-4740

HistoryOct 27, 2008 - 5:00 p.m.

CVE-2008-4740

2008-10-2717:00:00

mitre

www.cve.org

7.1 High

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

86.9%

Directory traversal vulnerability in templater.php in the ZZ_Templater module in TinyCMS 1.1.2, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the config[template] parameter.

References

1scripts.net/php-scripts/index.php?p=6

secunia.com/advisories/31569

securityreason.com/securityalert/4506

www.securityfocus.com/bid/30785

exchange.xforce.ibmcloud.com/vulnerabilities/44596

www.exploit-db.com/exploits/6287

7.1 High

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

86.9%

Related for CVELIST:CVE-2008-4740

cve1 nvd1 prion1