CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-2096

Directory traversal vulnerability in index.php in CMSQlite 1.2 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the mod parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 34.9%

CVSS Severity

CVSS v2 Score 7.5

References

http://php-security.org/2010/05/15/mops-2010-030-cmsqlite-mod-parameter-local-file-inclusion-vulnerability/index.html
http://php-security.org/2010/05/15/mops-2010-030-cmsqlite-mod-parameter-local-file-inclusion-vulnerability/index.html

Products affected by CVE-2010-2096

Cmsqlite » Cmsqlite » Version: Any

cpe:2.3:a:cmsqlite:cmsqlite:*
Cmsqlite » Cmsqlite » Version: 1.0

cpe:2.3:a:cmsqlite:cmsqlite:1.0
Cmsqlite » Cmsqlite » Version: 1.1

cpe:2.3:a:cmsqlite:cmsqlite:1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-2096

Products

Pricing

Contact Us