Lucene search

[email protected]NVD:CVE-2008-1760

HistoryApr 12, 2008 - 8:05 p.m.

CVE-2008-1760

2008-04-1220:05:00

CWE-94

[email protected]

web.nvd.nist.gov

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

Low

0.04 Low

EPSS

Percentile

92.1%

JSON

Multiple PHP remote file inclusion vulnerabilities in Blogator-script before 1.01 allow remote attackers to execute arbitrary PHP code via a URL in the incl_page parameter in (1) struct_admin.php, (2) struct_admin_blog.php, and (3) struct_main.php in _blogadata/include.

Affected configurations

NVD

Node

blogator-scriptblogator-scriptRange≤1.00

blogator-scriptblogator-scriptMatch0.90

blogator-scriptblogator-scriptMatch0.91

blogator-scriptblogator-scriptMatch0.92

blogator-scriptblogator-scriptMatch0.93

blogator-scriptblogator-scriptMatch0.95

References

secunia.com/advisories/29684

www.blogator-script.com/changelog.php

www.securityfocus.com/bid/28627

exchange.xforce.ibmcloud.com/vulnerabilities/41660

www.exploit-db.com/exploits/5365

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

Low

0.04 Low

EPSS

Percentile

92.1%

JSON

Related for NVD:CVE-2008-1760

prion1 cvelist1 cve1