CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-2573

PHP remote file inclusion vulnerability in tables_update.inc.php in phpGroupWare 0.9.14.005 and earlier allows remote attackers to execute arbitrary PHP code via an external URL in the appdir parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.021

EPSS Ranking 83.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.osvdb.org/7599
http://www.securityfocus.com/bid/12074
https://savannah.gnu.org/bugs/?func=detailitem&item_id=7478
http://www.osvdb.org/7599
http://www.securityfocus.com/bid/12074
https://savannah.gnu.org/bugs/?func=detailitem&item_id=7478

Products affected by CVE-2004-2573

Phpgroupware » Phpgroupware » Version: Any

cpe:2.3:a:phpgroupware:phpgroupware:*
Phpgroupware » Phpgroupware » Version: 0.9.14.003

cpe:2.3:a:phpgroupware:phpgroupware:0.9.14.003

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-2573

Products

Pricing

Contact Us