Vulnerability Details CVE-2011-5136
showImg.php in EPractize Labs Subscription Manager, possibly 1.0, allows remote attackers to overwrite arbitrary files via the db parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.3%
CVSS Severity
CVSS v2 Score 6.4
References
- http://osvdb.org/77505
- http://seclists.org/fulldisclosure/2011/Dec/125
- http://secunia.com/advisories/47072
- https://exchange.xforce.ibmcloud.com/vulnerabilities/71630
- http://osvdb.org/77505
- http://seclists.org/fulldisclosure/2011/Dec/125
- http://secunia.com/advisories/47072
- https://exchange.xforce.ibmcloud.com/vulnerabilities/71630
Products affected by CVE-2011-5136
-
cpe:2.3:a:epractizelabs:subscription_manager:1.0