exploitDog

CVE-2005-3639

Опубликовано: 16 нояб. 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

PHP file inclusion vulnerability in the osTicket module in Help Center Live before 2.0.3 allows remote attackers to access or include arbitrary files via the file parameter, possibly due to a directory traversal vulnerability.

Ссылки

http://secunia.com/advisories/17580
Patch
Vendor Advisory
http://www.securityfocus.com/bid/15404
http://www.vupen.com/english/advisories/2005/2451
http://secunia.com/advisories/17580
Patch
Vendor Advisory
http://www.securityfocus.com/bid/15404
http://www.vupen.com/english/advisories/2005/2451

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ubertec:help_center_live:*:*:*:*:*:*:*:*

Версия до 2.0.2 (включая)

EPSS

Процентиль: 82%

0.01676

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-4764-gxx4-jwh8

github

почти 4 года назад

PHP file inclusion vulnerability in the osTicket module in Help Center Live before 2.0.3 allows remote attackers to access or include arbitrary files via the file parameter, possibly due to a directory traversal vulnerability.

EPSS

Процентиль: 82%

0.01676

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other