CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-0068

PHP remote file inclusion vulnerability in config.php for PhpDig 1.6.5 and earlier allows remote attackers to execute arbitrary PHP code by modifying the $relative_script_path parameter to reference a URL on a remote web server that contains the code.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://marc.info/?l=bugtraq&m=107412194008671&w=2
http://www.phpdig.net/showthread.php?s=58bcc71c822830ec3bbdaae6d56846e0&threadid=393
http://www.securityfocus.com/bid/9424
https://exchange.xforce.ibmcloud.com/vulnerabilities/14826
http://marc.info/?l=bugtraq&m=107412194008671&w=2
http://www.phpdig.net/showthread.php?s=58bcc71c822830ec3bbdaae6d56846e0&threadid=393
http://www.securityfocus.com/bid/9424
https://exchange.xforce.ibmcloud.com/vulnerabilities/14826

Products affected by CVE-2004-0068

Phpdig.net » Phpdig » Version: Any

cpe:2.3:a:phpdig.net:phpdig:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-0068

Products

Pricing

Contact Us