Lucene search
MitreCVE-2008-4740HistoryOct 27, 2008 - 5:21 p.m.
CVE-2008-4740
2008-10-2717:21:27
CWE-22
mitre
web.nvd.nist.gov
24
cve
2008
4740
directory traversal
vulnerability
tinycms 1.1.2
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
High
EPSS
0.015
Percentile
86.9%
Directory traversal vulnerability in templater.php in the ZZ_Templater module in TinyCMS 1.1.2, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the config[template] parameter.
Affected configurations
Node
tinycmstinycmsMatch1.1.2
Related
cvelist
cvelist
CVE-2008-4740
2008-10-27 17:00:00
exploitdb
exploitdb
TinyCMS 1.1.2 - 'templater.php' Local File Inclusion
2008-08-21 00:00:00
nvd
nvd
CVE-2008-4740
2008-10-27 17:21:27
prion
prion
Directory traversal
2008-10-27 17:21:00
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
High
EPSS
0.015
Percentile
86.9%
Related for CVE-2008-4740