Lucene search

MitreCVE-2005-4319

HistoryDec 17, 2005 - 11:03 a.m.

CVE-2005-4319

2005-12-1711:03:00

mitre

web.nvd.nist.gov

cve-2005-4319

directory traversal

limbo cms

security vulnerability

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.9

Confidence

Low

EPSS

0.136

Percentile

95.6%

JSON

Directory traversal vulnerability in index2.php in Limbo CMS 1.0.4.2 and earlier allows remote attackers to include arbitrary PHP files via “…” sequences in the option parameter.

Affected configurations

Nvd

Node

limbo_cmslimbo_cmsRange≤1.0.4.2

VendorProductVersionCPE
limbo_cmslimbo_cms*cpe:2.3:a:limbo_cms:limbo_cms:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
limbo_cms	limbo_cms	*	cpe:2.3:a:limbo_cms:limbo_cms::::::::

References

rgod.altervista.org/limbo1042_xpl.html

secunia.com/advisories/18063/

securityreason.com/securityalert/255

securitytracker.com/id?1015364

www.osvdb.org/21755

www.securityfocus.com/archive/1/419470/100/0/threaded

www.securityfocus.com/bid/15871/

www.vupen.com/english/advisories/2005/2932

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.9

Confidence

Low

EPSS

0.136

Percentile

95.6%

JSON

Related for CVE-2005-4319