exploitDog

CVE-2005-1868

Опубликовано: 09 июн. 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

I-Man 0.9, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code by uploading a file attachment with a .php extension.

Ссылки

http://secunia.com/advisories/15558/
Broken Link
Patch
Vendor Advisory
http://sourceforge.net/project/shownotes.php?release_id=331422
Broken Link
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/20857
Third Party Advisory
VDB Entry
http://secunia.com/advisories/15558/
Broken Link
Patch
Vendor Advisory
http://sourceforge.net/project/shownotes.php?release_id=331422
Broken Link
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/20857
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:yvesglodt:i-man:*:*:*:*:*:*:*:*

Версия до 0.9 (включая)

EPSS

Процентиль: 80%

0.01402

Низкий

7.5 High

CVSS2

Дефекты

CWE-434

Связанные уязвимости

GHSA-r722-cvcp-fm98

github

почти 4 года назад

I-Man 0.9, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code by uploading a file attachment with a .php extension.

EPSS

Процентиль: 80%

0.01402

Низкий

7.5 High

CVSS2

Дефекты

CWE-434