CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
95.5%
PHP remote file inclusion vulnerability in index.php in Jupiter CMS 1.1.5, when PHP 5.0.0 or later is used, allows remote attackers to execute arbitrary PHP code via an ftp URL in the n parameter.
Vendor | Product | Version | CPE |
---|---|---|---|
jupiter_cms | jupiter_cms | 1.1.5 | cpe:2.3:a:jupiter_cms:jupiter_cms:1.1.5:*:*:*:*:*:*:* |
mgsdl.free.fr/advisories/12070214.txt
osvdb.org/33730
www.acid-root.new.fr/advisories/12070214.txt
www.securityfocus.com/archive/1/460076/100/0/threaded
www.securityfocus.com/archive/1/460100/100/0/threaded
www.securityfocus.com/bid/22560
exchange.xforce.ibmcloud.com/vulnerabilities/32519
www.exploit-db.com/exploits/3309