CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-0073

PHP remote file inclusion vulnerability in (1) config.php and (2) config_page.php for EasyDynamicPages 2.0 allows remote attackers to execute arbitrary PHP code by modifying the edp_relative_path parameter to reference a URL on a remote web server that contains a malicious serverdata.php script.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.054

EPSS Ranking 89.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://marc.info/?l=bugtraq&m=107307457327707&w=2
http://secunia.com/advisories/10535
http://securitytracker.com/id?1008584
http://www.osvdb.org/3318
http://www.osvdb.org/3408
http://www.securityfocus.com/bid/9338
https://exchange.xforce.ibmcloud.com/vulnerabilities/14136
http://marc.info/?l=bugtraq&m=107307457327707&w=2
http://secunia.com/advisories/10535
http://securitytracker.com/id?1008584
http://www.osvdb.org/3318
http://www.osvdb.org/3408
http://www.securityfocus.com/bid/9338
https://exchange.xforce.ibmcloud.com/vulnerabilities/14136

Products affected by CVE-2004-0073

Stoitsov » Easydynamicpages » Version: 2.0

cpe:2.3:a:stoitsov:easydynamicpages:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-0073

Products

Pricing

Contact Us