CVE-2001-1051

Опубликовано: 02 окт. 2001

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Dark Hart Portal (darkportal) PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2001-10/0012.html
Patch
Vendor Advisory
http://sourceforge.net/tracker/index.php?func=detail&aid=440666&group_id=20971&atid=120971
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/3390
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7215
http://archives.neohapsis.com/archives/bugtraq/2001-10/0012.html
Patch
Vendor Advisory
http://sourceforge.net/tracker/index.php?func=detail&aid=440666&group_id=20971&atid=120971
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/3390
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7215

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:dark_hart_portal:darkportal-unix:0.1.16:*:*:*:*:*:*:*

cpe:2.3:a:dark_hart_portal:darkportal-unix:0.1.17:*:*:*:*:*:*:*

cpe:2.3:a:dark_hart_portal:darkportal-unix:0.1.18:*:*:*:*:*:*:*

EPSS

Процентиль: 77%

0.01048

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-3p4x-x3rm-f5jf

github

больше 3 лет назад