Vulnerability Details CVE-2008-6201
Directory traversal vulnerability in help.php in the eskuel module in KwsPHP 1.3.456, as available before 20080416, allows remote attackers to execute arbitrary commands via the action parameter. NOTE: some of these details are obtained from third party information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.043
EPSS Ranking 88.3%
CVSS Severity
CVSS v2 Score 6.8
References
- http://koogar.alorys-hebergement.com/kwsphp/index.php?mod=news&ac=commentaires&id=49
- http://secunia.com/advisories/29802
- http://www.securityfocus.com/archive/1/490861
- http://www.securityfocus.com/bid/28788
- http://www.vupen.com/english/advisories/2008/1241/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41950
- https://www.exploit-db.com/exploits/5449
- http://koogar.alorys-hebergement.com/kwsphp/index.php?mod=news&ac=commentaires&id=49
- http://secunia.com/advisories/29802
- http://www.securityfocus.com/archive/1/490861
- http://www.securityfocus.com/bid/28788
- http://www.vupen.com/english/advisories/2008/1241/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41950
- https://www.exploit-db.com/exploits/5449