5
CVE-2005-3824
- EPSS 1.49%
- Veröffentlicht 26.11.2005 02:03:00
- Zuletzt bearbeitet 16.06.2026 22:17:42
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe uploads module in vTiger CRM 4.2 and earlier allows remote attackers to upload arbitrary files, such as PHP files, via the add2db action.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Vtiger ≫ Vtiger Crm Version <= 4.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.49% | 0.707 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
http://secunia.com/advisories/17693
http://www.vupen.com/english/advisories/2005/2569
http://marc.info/?l=full-disclosure&m=113290708121951&w=2
http://securitytracker.com/id?1015274
http://www.securityfocus.com/archive/1/417711/30/0/threaded
http://www.securityfocus.com/bid/15569