CVE-2001-1296

Опубликовано: 02 окт. 2001

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

More.groupware PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2001-10/0012.html
http://www.iss.net/security_center/static/7215.php
Patch
Vendor Advisory
http://www.moregroupware.org/index.php?action=detail&news_id=24
http://www.securityfocus.com/bid/3383
Vendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2001-10/0012.html
http://www.iss.net/security_center/static/7215.php
Patch
Vendor Advisory
http://www.moregroupware.org/index.php?action=detail&news_id=24
http://www.securityfocus.com/bid/3383
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:marc_logemann:more.groupware:0.5.1:*:*:*:*:*:*:*

EPSS

Процентиль: 71%

0.00656

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-rqmj-g3jm-h9c2

github

почти 4 года назад