CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Flux Cms: Security Vulnerabilities

CVE-2008-2686

webinc/bxe/scripts/loadsave.php in Flux CMS 1.5.0 and earlier allows remote attackers to execute arbitrary code by overwriting a PHP file in webinc/bxe/scripts/ via a filename in the XML parameter and PHP sequences in the request body, then making a direct request for this filename.

CVSS Score

7.5

EPSS Score

0.048

Published

2008-06-13

Page 1

Vulnerabilities

Vulnerable Software

Flux Cms: Security Vulnerabilities

Products

Pricing

Contact Us