CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2001-1049

Phorecast PHP script before 0.40 allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://archives.neohapsis.com/archives/bugtraq/2001-10/0012.html
http://phorecast.org/
http://www.iss.net/security_center/static/7215.php
http://www.securityfocus.com/bid/3388
http://archives.neohapsis.com/archives/bugtraq/2001-10/0012.html
http://phorecast.org/
http://www.iss.net/security_center/static/7215.php
http://www.securityfocus.com/bid/3388

Products affected by CVE-2001-1049

Paul M. Jones » Phorecast » Version: Any

cpe:2.3:a:paul_m._jones:phorecast:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2001-1049

Products

Pricing

Contact Us