CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-6902

Unrestricted file upload vulnerability in upload_flyer.php in 2532designs 2532|Gigs 1.2.2 Stable allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in flyers/.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.03

EPSS Ranking 86.0%

CVSS Severity

CVSS v2 Score 6.8

References

http://secunia.com/advisories/26585
http://www.securityfocus.com/bid/32911
https://exchange.xforce.ibmcloud.com/vulnerabilities/47466
https://www.exploit-db.com/exploits/7510
http://secunia.com/advisories/26585
http://www.securityfocus.com/bid/32911
https://exchange.xforce.ibmcloud.com/vulnerabilities/47466
https://www.exploit-db.com/exploits/7510

Products affected by CVE-2008-6902

2532gigs » 2532gigs » Version: 1.2.2

cpe:2.3:a:2532gigs:2532gigs:1.2.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-6902

Products

Pricing

Contact Us