Lucene search

[email protected]NVD:CVE-2005-1169

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-1169

2005-05-0204:00:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

High

EPSS

0.011

Percentile

84.2%

JSON

Mafia Blog .4 BETA does not properly protect the admin directory, which allows remote attackers to execute arbitrary PHP code by using writeinfo.php to inject the code into info.php.

Affected configurations

Nvd

Node

mafiamafia_blogMatch4_beta

VendorProductVersionCPE
mafiamafia_blog4_betacpe:2.3:a:mafia:mafia_blog:4_beta:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mafia	mafia_blog	4_beta	cpe:2.3:a:mafia:mafia_blog:4_beta:::::::*

References

chrisnowak.org/projects/mafia/

marc.info/?l=bugtraq&m=111359511826958&w=2

www.securityfocus.com/bid/13194

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

High

EPSS

0.011

Percentile

84.2%

JSON

Related for NVD:CVE-2005-1169

cve1 cvelist1