CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Directory traversal vulnerability in include/unverified.inc.php in Linux Web Shop LWS php User Base 1.3beta allows remote attackers to include and execute arbitrary local files via the template parameter...

7.5CVSS7.7AI score0.03025EPSS

Exploits1References3Affected Software1

NVD•added 2009/09/17 6:30 p.m.•15 views

CVE-2008-7240

7.5CVSS7.2AI score0.03025EPSS

Exploits1References3

Cvelist•added 2009/09/17 6:0 p.m.•20 views

CVE-2008-7240

7.2AI score0.03025EPSS

Exploits1References3

CVE•added 2009/09/17 6:0 p.m.•38 views

CVE-2008-7240

CVE-2008-7240 describes a directory traversal vulnerability in Linux Web Shop (LWS) PHP User Base 1.3beta. The flaw is in include/unverified.inc.php and allows remote attackers to include and execute arbitrary local files by manipulating the template parameter. Public references (X-Force, Securit...

7.5CVSS7.2AI score0.03025EPSS

Exploits1References3Affected Software1

NVD•added 2008/02/27 7:44 p.m.•10 views

CVE-2008-1043

PHP remote file inclusion vulnerability in templates/default/header.inc.php in Linux Web Shop LWS php User Base 1.3 BETA allows remote attackers to execute arbitrary PHP code via a URL in the menu parameter...

7.5CVSS7.5AI score0.11385EPSS

Exploits1References4

Prion•added 2008/02/27 7:44 p.m.•14 views

Directory traversal

Directory traversal vulnerability in include/body.inc.php in Linux Web Shop LWS php Download Manager 1.0 and 1.1 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the content parameter...

6.8CVSS7.6AI score0.04249EPSS

Exploits0References4Affected Software1

Prion•added 2008/02/27 7:44 p.m.•10 views

Remote file inclusion

7.5CVSS8AI score0.11385EPSS

Exploits1References4Affected Software1

NVD•added 2008/02/27 7:44 p.m.•15 views

CVE-2008-1042

6.8CVSS7.1AI score0.04249EPSS

Exploits0References4

Cvelist•added 2008/02/27 7:0 p.m.•16 views

CVE-2008-1043

7.5AI score0.11385EPSS

Exploits1References4

CVE•added 2008/02/27 7:0 p.m.•32 views

CVE-2008-1042

CVE-2008-1042 describes a directory traversal in Linux Web Shop (LWS) PHP Download Manager 1.0 and 1.1, where include/body.inc.php accepts a .. in the content parameter to include and execute arbitrary local files. This vulnerability can impact confidentiality, integrity, and availability (CVSSv2...

6.8CVSS7.1AI score0.04249EPSS

Exploits0References4Affected Software1

CVE•added 2008/02/27 7:0 p.m.•37 views

CVE-2008-1043

Affected software: Linux Web Shop (LWS) PHP User Base 1.3 BETA. Vulnerability type: PHP remote file inclusion in templates/default/header.inc.php. Root cause / vector: remote attackers can supply a URL in the menu parameter, leading to arbitrary PHP code execution. Impact (as stated): arbitrary c...

7.5CVSS7.5AI score0.11385EPSS

Exploits1References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by