Lucene search

[email protected]CVE-2008-1893

HistoryApr 18, 2008 - 10:05 p.m.

CVE-2008-1893

2008-04-1822:05:00

CWE-94

[email protected]

web.nvd.nist.gov

php

remote file inclusion

vulnerability

w2b online banking

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.027 Low

EPSS

Percentile

90.6%

JSON

PHP remote file inclusion vulnerability in index.php in W2B Online Banking allows remote attackers to execute arbitrary PHP code via a URL in the ilang parameter.

Affected configurations

NVD

Node

w2bonline_banking

CPENameOperatorVersion
w2b:online_bankingw2b online bankingeq*

CPE	Name	Operator	Version
w2b:online_banking	w2b online banking	eq	*

References

marc.info/?l=bugtraq&m=120829213903472&w=2

www.securityfocus.com/bid/28796

exchange.xforce.ibmcloud.com/vulnerabilities/41931

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.027 Low

EPSS

Percentile

90.6%

JSON

Related for CVE-2008-1893

prion1 nvd1 cvelist1