CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-0572

Multiple PHP remote file inclusion vulnerabilities in Mindmeld 1.2.0.10 allow remote attackers to execute arbitrary PHP code via a URL in the MM_GLOBALS[home] parameter to (1) acweb/admin_index.php; and (2) ask.inc.php, (3) learn.inc.php, (4) manage.inc.php, (5) mind.inc.php, and (6) sensory.inc.php in include/.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.027

EPSS Ranking 85.3%

CVSS Severity

CVSS v2 Score 6.8

References

http://www.securityfocus.com/bid/27538
https://www.exploit-db.com/exploits/5026
http://www.securityfocus.com/bid/27538
https://www.exploit-db.com/exploits/5026

Products affected by CVE-2008-0572

Mindmeld » Mindmeld » Version: 1.2.0.10

cpe:2.3:a:mindmeld:mindmeld:1.2.0.10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-0572

Products

Pricing

Contact Us