CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-0403

Directory traversal vulnerability in about.php in phpGroupWare (phpgw) before 0.9.16.016 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the app parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.1%

CVSS Severity

CVSS v2 Score 6.8

References

Products affected by CVE-2010-0403

Phpgroupware » Phpgroupware » Version: Any

cpe:2.3:a:phpgroupware:phpgroupware:*
Phpgroupware » Phpgroupware » Version: 0.9.16

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16
Phpgroupware » Phpgroupware » Version: 0.9.16.000

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.000
Phpgroupware » Phpgroupware » Version: 0.9.16.001

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.001
Phpgroupware » Phpgroupware » Version: 0.9.16.002

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.002
Phpgroupware » Phpgroupware » Version: 0.9.16.003

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.003
Phpgroupware » Phpgroupware » Version: 0.9.16.005

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.005
Phpgroupware » Phpgroupware » Version: 0.9.16.010

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.010
Phpgroupware » Phpgroupware » Version: 0.9.16.011

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.011
Phpgroupware » Phpgroupware » Version: 0.9.16.012

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.012
Phpgroupware » Phpgroupware » Version: 0.9.16.014

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.014

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-0403

Products

Pricing

Contact Us