Vulnerability Details CVE-2008-1405
PHP remote file inclusion vulnerability in code/display.php in fuzzylime (cms) 3.01 allows remote attackers to execute arbitrary PHP code via a URL in the admindir parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.092
EPSS Ranking 92.4%
CVSS Severity
CVSS v2 Score 6.8
References
- http://irk4z.wordpress.com/2008/03/15/fuzzylime-cms-301-remote-file-inclusion-vulnerability/
- http://secunia.com/advisories/29417
- http://www.vupen.com/english/advisories/2008/0912/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41221
- https://www.exploit-db.com/exploits/5260
- http://irk4z.wordpress.com/2008/03/15/fuzzylime-cms-301-remote-file-inclusion-vulnerability/
- http://secunia.com/advisories/29417
- http://www.vupen.com/english/advisories/2008/0912/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41221
- https://www.exploit-db.com/exploits/5260