Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-1132

Malware in sbrugna...

6.8CVSS6.4AI score0.01689EPSS
Exploits0References3
seebug.org
seebug.org
added 2008/03/04 12:0 a.m.25 views

SiteBuilder Elite 'CarpPath'远程文件包含漏洞

SiteBuilder Elite是一款基于PHP的WEB应用程序。 SiteBuilder Elite不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB权限执行任意PHP代码。 问题是由于脚本对用户提交的'CarpPath'参数处理缺少充分过滤,提交远程服务器的任意文件作为包含对象,可导致以WEB权限执行任意PHP代码。 NovaSoft SiteBuilder Elite 1.2 厂商解决方案 目前没有详细解决方案提供: http://sitebuilderelite.com/...

7.1AI score
Exploits0
NVD
NVD
added 2008/03/03 10:44 p.m.15 views

CVE-2008-1123

Multiple PHP remote file inclusion vulnerabilities in SiteBuilder Elite 1.2 allow remote attackers to execute arbitrary PHP code via a URL in the CarpPath parameter to 1 files/carprss.php and 2 files/amazon-bestsellers.php...

6.8CVSS7.7AI score0.01689EPSS
Exploits0References2
CVE
CVE
added 2008/03/03 10:0 p.m.38 views

CVE-2008-1123

CVE-2008-1123 affects SiteBuilder Elite 1.2. The vulnerability is a PHP remote file inclusion (RFI) in the CarpPath parameter, exploitable via two URLs (files/carprss.php and files/amazon-bestsellers.php). The underlying issue allows remote attackers to execute arbitrary PHP code on affected inst...

6.8CVSS7.7AI score0.01689EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2008/03/03 10:0 p.m.22 views

CVE-2008-1123

Multiple PHP remote file inclusion vulnerabilities in SiteBuilder Elite 1.2 allow remote attackers to execute arbitrary PHP code via a URL in the CarpPath parameter to 1 files/carprss.php and 2 files/amazon-bestsellers.php...

7.7AI score0.01689EPSS
Exploits0References2
Rows per page
Query Builder