CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-6066

Multiple PHP remote file inclusion vulnerabilities in Meet#Web 0.8 allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) modules.php, (2) ManagerResource.class.php, (3) ManagerRightsResource.class.php, (4) RegForm.class.php, (5) RegResource.class.php, and (6) RegRightsResource.class.php in classes/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 72.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/30673
http://www.securityfocus.com/bid/30673/exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/44454
http://www.securityfocus.com/bid/30673
http://www.securityfocus.com/bid/30673/exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/44454

Products affected by CVE-2008-6066

Meet#web » Meet#web » Version: 0.8

cpe:2.3:a:meet#web:meet#web:0.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-6066

Products

Pricing

Contact Us