CVE-2008-6361

Sažetak

Directory traversal vulnerability in index.php in InSun Feed CMS 1.7.3 19Beta allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the lang parameter.

Reference

http://www.securityfocus.com/bid/32783
http://www.securityfocus.com/bid/32783/exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/47276
https://www.exploit-db.com/exploits/7422

CVSS

Base:	6.8
Impact:	6.4
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

29-09-2017 - 01:33

Objavljeno

02-03-2009 - 16:30