CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-7240

Directory traversal vulnerability in include/unverified.inc.php in Linux Web Shop (LWS) php User Base 1.3beta allows remote attackers to include and execute arbitrary local files via the template parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.016

EPSS Ranking 80.9%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/27964
https://exchange.xforce.ibmcloud.com/vulnerabilities/40793
https://www.exploit-db.com/exploits/5179
http://www.securityfocus.com/bid/27964
https://exchange.xforce.ibmcloud.com/vulnerabilities/40793
https://www.exploit-db.com/exploits/5179

Products affected by CVE-2008-7240

Linuxwebshop » Php User Base » Version: 1.3

cpe:2.3:a:linuxwebshop:php_user_base:1.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-7240

Products

Pricing

Contact Us