Lucene search

[email protected]NVD:CVE-2005-3948

HistoryDec 01, 2005 - 6:03 a.m.

CVE-2005-3948

2005-12-0106:03:00

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

86.8%

JSON

Directory traversal vulnerability in main.php in PHPAlbum 0.2.3 and earlier allows remote attackers to read arbitrary files via the (1) cmd and (2) var1 parameters.

Affected configurations

NVD

Node

phpalbum.netphpalbumRange≤0.2.3

References

pridels0.blogspot.com/2005/11/phpalbum-local-file-include-vuln.html

www.osvdb.org/21410

www.phpalbum.net/dw

www.securityfocus.com/bid/15651

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

86.8%

JSON

Related for NVD:CVE-2005-3948

cvelist1 cve1