CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mini-Pub: >> Mini-Pub >> 0.3 Security Vulnerabilities

CVE-2008-5579

Absolute path traversal vulnerability in mini-pub.php/front-end/cat.php in mini-pub 0.3 allows remote attackers to read arbitrary files via a full pathname in the sFileName parameter.

CVSS Score

5.0

EPSS Score

0.017

Published

2008-12-15

CVE-2008-5580

mini-pub.php/front-end/cat.php in mini-pub 0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the sFileName argument.

CVSS Score

7.5

EPSS Score

0.029

Published

2008-12-15

CVE-2008-5581

PHP remote file inclusion vulnerability in mini-pub.php/front-end/img.php in mini-pub 0.3 allows remote attackers to execute arbitrary PHP code via a URL in the sFileName parameter.

CVSS Score

7.5

EPSS Score

0.011

Published

2008-12-15

Page 1

Vulnerabilities

Vulnerable Software

Mini-Pub: >> Mini-Pub >> 0.3 Security Vulnerabilities

Products

Pricing

Contact Us