Lucene search

[email protected]CVE-2005-4211

HistoryDec 14, 2005 - 11:03 a.m.

CVE-2005-4211

2005-12-1411:03:00

[email protected]

web.nvd.nist.gov

216

cve-2005-4211

php

remote file inclusion

vulnerability

phpcoin 1.2.2

execute

arbitrary

code

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.076 Low

EPSS

Percentile

94.2%

JSON

PHP remote file inclusion vulnerability in coin_includes/db.php in phpCOIN 1.2.2 allows remote attackers to execute arbitrary PHP code via a URL in the $_CCFG[_PKG_PATH_DBSE] variable.

Affected configurations

NVD

Node

coinsoft_technologiesphpcoinMatch1.2.2

CPENameOperatorVersion
coinsoft_technologies:phpcoincoinsoft technologies phpcoineq1.2.2

CPE	Name	Operator	Version
coinsoft_technologies:phpcoin	coinsoft technologies phpcoin	eq	1.2.2

References

forums.phpcoin.com/index.php?showtopic=5469

rgod.altervista.org/phpcoin122.html

secunia.com/advisories/18030

securitytracker.com/id?1015345

www.osvdb.org/21724

www.securityfocus.com/archive/1/419382/100/0/threaded

www.securityfocus.com/bid/15831

www.vupen.com/english/advisories/2005/2888

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.076 Low

EPSS

Percentile

94.2%

JSON

Related for CVE-2005-4211

nvd1 cvelist1 nessus1