CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-4593

PHP remote file inclusion vulnerability in phpDocumentor 1.3.0 rc4 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary code via a URL in the (1) FORUM[LIB] parameter in Documentation/tests/bug-559668.php and (2) the root_dir parameter in docbuilder/file_dialog.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.211

EPSS Ranking 95.4%

CVSS Severity

CVSS v2 Score 7.5

References

Products affected by CVE-2005-4593

Joshua Eichorn » Phpdocumentor » Version: 1.2

cpe:2.3:a:joshua_eichorn:phpdocumentor:1.2
Joshua Eichorn » Phpdocumentor » Version: 1.2.1

cpe:2.3:a:joshua_eichorn:phpdocumentor:1.2.1
Joshua Eichorn » Phpdocumentor » Version: 1.2.2

cpe:2.3:a:joshua_eichorn:phpdocumentor:1.2.2
Joshua Eichorn » Phpdocumentor » Version: 1.2.3

cpe:2.3:a:joshua_eichorn:phpdocumentor:1.2.3
Joshua Eichorn » Phpdocumentor » Version: 1.3_rc3

cpe:2.3:a:joshua_eichorn:phpdocumentor:1.3_rc3
Joshua Eichorn » Phpdocumentor » Version: 1.3_rc4

cpe:2.3:a:joshua_eichorn:phpdocumentor:1.3_rc4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-4593

Products

Pricing

Contact Us