CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-0367

Multiple PHP remote file inclusion vulnerabilities in BitScripts Bits Video Script 2.05 Gold Beta, and possibly 2.04, allow remote attackers to execute arbitrary PHP code via a URL in the rowptem[template] parameter to (1) showcasesearch.php and (2) showcase2search.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 75.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.packetstormsecurity.com/1001-exploits/bitsvs-xssuploadrfi.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/55740
http://www.packetstormsecurity.com/1001-exploits/bitsvs-xssuploadrfi.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/55740

Products affected by CVE-2010-0367

Bitscripts » Bits Video Script » Version: 2.04

cpe:2.3:a:bitscripts:bits_video_script:2.04
Bitscripts » Bits Video Script » Version: 2.05

cpe:2.3:a:bitscripts:bits_video_script:2.05

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-0367

Products

Pricing

Contact Us