CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-6913

Unrestricted file upload vulnerability in editresume_next.php in Zeeways ZEEJOBSITE 2.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a photo in a profile edit action, then accessing the file via a direct request to jobseekers/logos/.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.025

EPSS Ranking 84.8%

CVSS Severity

CVSS v2 Score 6.5

References

http://www.securityfocus.com/bid/32225
http://www.vupen.com/english/advisories/2008/3072
https://exchange.xforce.ibmcloud.com/vulnerabilities/46505
https://www.exploit-db.com/exploits/7062
http://www.securityfocus.com/bid/32225
http://www.vupen.com/english/advisories/2008/3072
https://exchange.xforce.ibmcloud.com/vulnerabilities/46505
https://www.exploit-db.com/exploits/7062

Products affected by CVE-2008-6913

Zeeways » Zeejobsite » Version: 2.0

cpe:2.3:a:zeeways:zeejobsite:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-6913

Products

Pricing

Contact Us