CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
92.9%
PHP remote file inclusion vulnerability in index.php in Achievo 1.1.0 allows remote attackers to execute arbitrary PHP code via a URL in the config_atkroot parameter.
Vendor | Product | Version | CPE |
---|---|---|---|
apple | a_ux | * | cpe:2.3:o:apple:a_ux:*:*:*:*:*:*:*:* |
apple | mac_os_x | * | cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* |
hp | hp-ux | * | cpe:2.3:o:hp:hp-ux:*:*:*:*:*:*:*:* |
hp | tru64 | * | cpe:2.3:o:hp:tru64:*:*:*:*:*:*:*:* |
ibm | os2 | * | cpe:2.3:o:ibm:os2:*:*:*:*:*:*:*:* |
linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
microsoft | windows_2000 | * | cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:* |
microsoft | windows_2003_server | * | cpe:2.3:o:microsoft:windows_2003_server:*:*:*:*:*:*:*:* |
microsoft | windows_95 | * | cpe:2.3:o:microsoft:windows_95:*:*:*:*:*:*:*:* |
microsoft | windows_98 | * | cpe:2.3:o:microsoft:windows_98:*:gold:*:*:*:*:*:* |