Lucene search
MitreCVE-2008-0442HistoryJan 25, 2008 - 12:00 a.m.
CVE-2008-0442
2008-01-2500:00:00
CWE-94
mitre
web.nvd.nist.gov
20
cve-2008-0442
php
remote file inclusion
small axe weblog 0.3.1
security vulnerability
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.3
Confidence
High
EPSS
0.01
Percentile
83.4%
PHP remote file inclusion vulnerability in inc/linkbar.php in Small Axe Weblog 0.3.1 allows remote attackers to execute arbitrary PHP code via a URL in the ffile parameter, a different vector than CVE-2008-0376. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Affected configurations
Node
small_axe_solutionsweblogMatch0.3.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| small_axe_solutions | weblog | 0.3.1 | cpe:2.3:a:small_axe_solutions:weblog:0.3.1:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2008-0442
2008-01-24 23:00:00
CVE-2008-0376
2008-01-22 19:00:00
nvd
nvd
CVE-2008-0442
2008-01-25 00:00:00
CVE-2008-0376
2008-01-22 20:00:00
exploitdb
exploitdb
Small Axe 0.3.1 - 'cfile' Remote File Inclusion
2008-01-18 00:00:00
prion
prion
Remote file inclusion
2008-01-25 00:00:00
Remote file inclusion
2008-01-22 20:00:00
canvas
canvas
Immunity Canvas: SMALLAXE_INCLUDE
2008-01-22 20:00:00
cve
cve
CVE-2008-0376
2008-01-22 20:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.3
Confidence
High
EPSS
0.01
Percentile
83.4%
Related for CVE-2008-0442