CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-3910

Multiple directory traversal vulnerabilities in the return_application_language function in include/utils/utils.php in vtiger CRM before 5.2.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in (1) the lang_crm parameter to phprint.php or (2) the current_language parameter in an Accounts Import action to graph.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.015

EPSS Ranking 80.2%

CVSS Severity

CVSS v2 Score 6.8

References

Products affected by CVE-2010-3910

Vtiger » Vtiger Crm » Version: 1.0

cpe:2.3:a:vtiger:vtiger_crm:1.0
Vtiger » Vtiger Crm » Version: 2.0

cpe:2.3:a:vtiger:vtiger_crm:2.0
Vtiger » Vtiger Crm » Version: 2.0.1

cpe:2.3:a:vtiger:vtiger_crm:2.0.1
Vtiger » Vtiger Crm » Version: 2.1

cpe:2.3:a:vtiger:vtiger_crm:2.1
Vtiger » Vtiger Crm » Version: 3

cpe:2.3:a:vtiger:vtiger_crm:3
Vtiger » Vtiger Crm » Version: 3.0

cpe:2.3:a:vtiger:vtiger_crm:3.0
Vtiger » Vtiger Crm » Version: 3.2

cpe:2.3:a:vtiger:vtiger_crm:3.2
Vtiger » Vtiger Crm » Version: 4

cpe:2.3:a:vtiger:vtiger_crm:4
Vtiger » Vtiger Crm » Version: 4.0

cpe:2.3:a:vtiger:vtiger_crm:4.0
Vtiger » Vtiger Crm » Version: 4.0.1

cpe:2.3:a:vtiger:vtiger_crm:4.0.1
Vtiger » Vtiger Crm » Version: 4.2

cpe:2.3:a:vtiger:vtiger_crm:4.2
Vtiger » Vtiger Crm » Version: 4.2.4

cpe:2.3:a:vtiger:vtiger_crm:4.2.4
Vtiger » Vtiger Crm » Version: 5

cpe:2.3:a:vtiger:vtiger_crm:5
Vtiger » Vtiger Crm » Version: 5.0

cpe:2.3:a:vtiger:vtiger_crm:5.0
Vtiger » Vtiger Crm » Version: 5.0.0

cpe:2.3:a:vtiger:vtiger_crm:5.0.0
Vtiger » Vtiger Crm » Version: 5.0.1

cpe:2.3:a:vtiger:vtiger_crm:5.0.1
Vtiger » Vtiger Crm » Version: 5.0.2

cpe:2.3:a:vtiger:vtiger_crm:5.0.2
Vtiger » Vtiger Crm » Version: 5.0.3

cpe:2.3:a:vtiger:vtiger_crm:5.0.3
Vtiger » Vtiger Crm » Version: 5.0.4

cpe:2.3:a:vtiger:vtiger_crm:5.0.4
Vtiger » Vtiger Crm » Version: 5.1.0

cpe:2.3:a:vtiger:vtiger_crm:5.1.0
Vtiger » Vtiger Crm » Version: 5.2.0

cpe:2.3:a:vtiger:vtiger_crm:5.2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-3910

Products

Pricing

Contact Us