7.5
CVE-2004-0016
- EPSS 1.59%
- Veröffentlicht 03.02.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:04:46
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe calendar module for phpgroupware 0.9.14 does not enforce the "save extension" feature for holiday files, which allows remote attackers to create and execute PHP files.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Phpgroupware ≫ Phpgroupware Version0.9.14
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.59% | 0.725 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://www.debian.org/security/2004/dsa-419
http://www.osvdb.org/6860
http://www.securityfocus.com/bid/9387
https://exchange.xforce.ibmcloud.com/vulnerabilities/13489