Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-4796HistoryOct 30, 2008 - 8:56 p.m.
CVE-2008-4796
2008-10-3020:56:54
Debian Security Bug Tracker
security-tracker.debian.org
11
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.011 Low
EPSS
Percentile
84.6%
The _httpsrequest function (Snoopy/Snoopy.class.php) in Snoopy 1.2.3 and earlier, as used in (1) ampache, (2) libphp-snoopy, (3) mahara, (4) mediamate, (5) opendb, (6) pixelpost, and possibly other products, allows remote attackers to execute arbitrary commands via shell metacharacters in https URLs.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libphp-snoopy | < 1.2.4-1 | libphp-snoopy_1.2.4-1_all.deb |
| Debian | 11 | all | libphp-snoopy | < 1.2.4-1 | libphp-snoopy_1.2.4-1_all.deb |
| Debian | 999 | all | libphp-snoopy | < 1.2.4-1 | libphp-snoopy_1.2.4-1_all.deb |
| Debian | 12 | all | wordpress | < 2.5.1-9 | wordpress_2.5.1-9_all.deb |
| Debian | 11 | all | wordpress | < 2.5.1-9 | wordpress_2.5.1-9_all.deb |
| Debian | 999 | all | wordpress | < 2.5.1-9 | wordpress_2.5.1-9_all.deb |
| Debian | 13 | all | wordpress | < 2.5.1-9 | wordpress_2.5.1-9_all.deb |
Related
nessus
nessus
Fedora 9 : wordpress-2.6.3-1.fc9 (2008-9257)
2008-11-07 00:00:00
Fedora 8 : moodle-1.8.7-1.fc8 (2008-9502)
2008-11-09 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: moodle-1.9.3-3.fc9
2008-11-08 02:11:18
[SECURITY] Fedora 10 Update: moodle-1.9.3-3.fc10
2008-11-22 16:45:18
[SECURITY] Fedora 9 Update: moodle-1.9.3-4.fc9
2008-12-21 08:20:52
prion
prion
Design/Logic Flaw
2008-10-30 20:56:00
Design/Logic Flaw
2017-03-31 16:59:00
Code injection
2016-12-15 22:59:00
openvas
openvas
Fedora Update for wordpress FEDORA-2008-9257
2009-02-17 00:00:00
FreeBSD Ports: wordpress, de-wordpress, wordpress-mu
2008-11-01 00:00:00
Fedora Update for wordpress FEDORA-2008-9304
2009-02-17 00:00:00
ubuntucve
ubuntucve
cvelist
cvelist
cve
cve
jvn
jvn
JVN#20502807 Snoopy command injection vulnerability
2008-10-28 00:00:00
nvd
nvd
myhack58
myhack58
veracode
veracode
Privilege Escalation
2019-01-15 09:15:43
Remote Code Execution (RCE)
2019-01-15 09:15:14
debiancve
debiancve
CVE-2008-7313
2017-03-31 16:59:00
packetstorm
packetstorm
Feed2JS File Disclosure
2014-07-05 00:00:00
Nagios Core Curl Command Injection / Code Execution
2016-12-15 00:00:00
seebug
seebug
Nagios Core < 4.2.2 Curl Command Injection/Code Execution (CVE-2016-9565)
2016-12-14 00:00:00
threatpost
threatpost
Nagios Core Patches Root, RCE Vulnerabilities
2016-12-16 11:00:13
gentoo
gentoo
Nagios: Multiple vulnerabilities
2017-02-21 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in nagios affect PowerKVM
2018-06-18 01:38:44
Security Bulletin: Vulnerabilities in nagios affect PowerKVM
2018-06-18 01:33:23
osv
osv
moodle - several vulnerabilities
2008-12-22 00:00:00
wordpress - several vulnerabilities
2009-08-23 00:00:00
wordpress - regression fix
2009-08-23 00:00:00
debian
debian
[SECURITY] [DSA 1691-1] New moodle packages fix several vulnerabilities
2008-12-22 08:27:17
[SECURITY] [DSA 1871-1] New wordpress packages fix several vulnerabilities
2009-08-23 03:41:14
[SECURITY] [DSA 1871-2] New wordpress packages fix regression
2009-08-27 01:39:01
amazon
amazon
Important: nagios
2017-10-03 11:00:00
ubuntu
ubuntu
Moodle vulnerabilities
2009-06-24 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.011 Low
EPSS
Percentile
84.6%
Related for DEBIANCVE:CVE-2008-4796