Lucene search
HistoryAug 25, 2009 - 10:30 a.m.
CVE-2008-7073
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
High
EPSS
0.029
Percentile
90.9%
PHP remote file inclusion vulnerability in lib/action/rss.php in RSS module 0.1 for Pie Web M{a,e}sher, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the lib parameter.
Affected configurations
Node
rssmodulerss_moduleMatch0.1
ekkaiapie_web
| Vendor | Product | Version | CPE |
|---|---|---|---|
| rssmodule | rss_module | 0.1 | cpe:2.3:a:rssmodule:rss_module:0.1:*:*:*:*:*:*:* |
| ekkaia | pie_web | * | cpe:2.3:a:ekkaia:pie_web:*:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
Pie Web m{a,e}sher mod rss 0.1 - Remote File Inclusion
2008-11-25 00:00:00
cvelist
cvelist
CVE-2008-7073
2009-08-25 10:00:00
prion
prion
Remote file inclusion
2009-08-25 10:30:00
cve
cve
CVE-2008-7073
2009-08-25 10:30:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
High
EPSS
0.029
Percentile
90.9%
Related for NVD:CVE-2008-7073