Vulnerability Details CVE-2003-1254
Active PHP Bookmarks (APB) 1.1.01 allows remote attackers to execute arbitrary PHP code via (1) head.php, (2) apb_common.php, or (3) apb_view_class.php by modifying the APB_SETTINGS parameter to reference a URL on a remote web server that contains the code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.7%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/bugtraq/2003-01/0049.html
- http://www.iss.net/security_center/static/11010.php
- http://www.securityfocus.com/bid/6545
- http://archives.neohapsis.com/archives/bugtraq/2003-01/0049.html
- http://www.iss.net/security_center/static/11010.php
- http://www.securityfocus.com/bid/6545
Products affected by CVE-2003-1254
-
cpe:2.3:a:active_php_bookmarks:active_php_bookmarks:1.1.01