Vulnerability Details CVE-2008-2081
Directory traversal vulnerability in index.php in Siteman 2.0.x2 allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the module parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.023
EPSS Ranking 84.3%
CVSS Severity
CVSS v2 Score 9.0
References
- http://ircrash.com/english/index.php?topic=29.0
- http://www.securityfocus.com/bid/28943
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42021
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42022
- https://www.exploit-db.com/exploits/5499
- http://ircrash.com/english/index.php?topic=29.0
- http://www.securityfocus.com/bid/28943
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42021
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42022
- https://www.exploit-db.com/exploits/5499