CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-0231

Multiple directory traversal vulnerabilities in index.php in Tuned Studios (1) Subwoofer, (2) Freeze Theme, (3) Orange Cutout, (4) Lonely Maple, (5) Endless, (6) Classic Theme, and (7) Music Theme webpage templates allow remote attackers to include and execute arbitrary files via ".." sequences in the page parameter. NOTE: this can be leveraged for remote file inclusion when running in some PHP 5 environments.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.032

EPSS Ranking 86.4%

CVSS Severity

CVSS v2 Score 7.5

References

Products affected by CVE-2008-0231

Tuned Studios » Classic Theme » Version: Any

cpe:2.3:a:tuned_studios:classic_theme:*
Tuned Studios » Endless » Version: Any

cpe:2.3:a:tuned_studios:endless:*
Tuned Studios » Freeze Theme » Version: Any

cpe:2.3:a:tuned_studios:freeze_theme:*
Tuned Studios » Lonely Maple » Version: Any

cpe:2.3:a:tuned_studios:lonely_maple:*
Tuned Studios » Music Theme » Version: Any

cpe:2.3:a:tuned_studios:music_theme:*
Tuned Studios » Orange Cutout » Version: Any

cpe:2.3:a:tuned_studios:orange_cutout:*
Tuned Studios » Subwoofer » Version: Any

cpe:2.3:a:tuned_studios:subwoofer:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-0231

Products

Pricing

Contact Us