Lucene search

MitreCVE-2005-4084

HistoryDec 08, 2005 - 1:03 a.m.

CVE-2005-4084

2005-12-0801:03:00

mitre

web.nvd.nist.gov

phpbb

extreme styles

xs_edit.php

installation path

security vulnerability

nvd

cve-2005-4084

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

Confidence

Low

EPSS

0.004

Percentile

74.9%

JSON

xs_edit.php in the phpBB eXtreme Styles module 2.2.1 and earlier allows remote attackers to obtain the installation path of the application via an invalid viewbackup parameter.

Affected configurations

Nvd

Node

phpbb_stylesphpbb_extreme_stylesRange≤2.2.1

VendorProductVersionCPE
phpbb_stylesphpbb_extreme_styles*cpe:2.3:a:phpbb_styles:phpbb_extreme_styles:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
phpbb_styles	phpbb_extreme_styles	*	cpe:2.3:a:phpbb_styles:phpbb_extreme_styles::::::::

References

www.securityfocus.com/archive/1/418518/100/0/threaded

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

Confidence

Low

EPSS

0.004

Percentile

74.9%

JSON

Related for CVE-2005-4084