Lucene search
MitreCVE-2008-1989HistoryApr 27, 2008 - 9:05 p.m.
CVE-2008-1989
2008-04-2721:05:00
CWE-94
mitre
web.nvd.nist.gov
44
cve-2008-1989
php
remote file inclusion
vulnerability
123flashchat.php
123 flash chat 6.8.0
e107
register globals
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.7
Confidence
High
EPSS
0.022
Percentile
89.5%
PHP remote file inclusion vulnerability in 123flashchat.php in the 123 Flash Chat 6.8.0 module for e107, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the e107path parameter.
Affected configurations
Node
123flashchat123_flash_chat_moduleMatch6.8.0
ORe107e107
| Vendor | Product | Version | CPE |
|---|---|---|---|
| 123flashchat | 123_flash_chat_module | 6.8.0 | cpe:2.3:a:123flashchat:123_flash_chat_module:6.8.0:*:*:*:*:*:*:* |
| e107 | e107 | * | cpe:2.3:a:e107:e107:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2008-1989
2008-04-27 21:00:00
nvd
nvd
CVE-2008-1989
2008-04-27 21:05:00
exploitdb
exploitdb
e107 module 123 flash chat 6.8.0 - Remote File Inclusion
2008-04-17 00:00:00
prion
prion
Remote file inclusion
2008-04-27 21:05:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.7
Confidence
High
EPSS
0.022
Percentile
89.5%
Related for CVE-2008-1989