Lucene search
MitreCVE-2008-3575HistoryAug 10, 2008 - 8:41 p.m.
CVE-2008-3575
2008-08-1020:41:00
CWE-94
mitre
web.nvd.nist.gov
33
cve-2008-3575
php
remote file inclusion
vulnerability
ezcontents cms
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.401
Percentile
97.3%
PHP remote file inclusion vulnerability in modules/calendar/minicalendar.php in ezContents CMS allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[gsLanguage] parameter, a different vector than CVE-2006-4477 and CVE-2004-0132.
Affected configurations
Node
ezcontentsezcontents_cms
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ezcontents | ezcontents_cms | * | cpe:2.3:a:ezcontents:ezcontents_cms:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
prion
prion
Remote file inclusion
2008-08-10 20:41:00
nvd
nvd
exploitdb
exploitdb
cve
cve
CVE-2004-0132
2004-03-03 05:00:00
CVE-2006-4477
2006-08-31 21:04:00
securityvulns
securityvulns
PHP Code Injection Vulnerabilities in ezContents 2.0.2 and prior
2004-02-11 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.401
Percentile
97.3%
Related for CVE-2008-3575