5
CVE-2005-3948
- EPSS 3.54%
- Veröffentlicht 01.12.2005 06:03:00
- Zuletzt bearbeitet 16.06.2026 22:17:56
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginDirectory traversal vulnerability in main.php in PHPAlbum 0.2.3 and earlier allows remote attackers to read arbitrary files via the (1) cmd and (2) var1 parameters.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Phpalbum.Net ≫ Phpalbum Version <= 0.2.3
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.54% | 0.878 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://pridels0.blogspot.com/2005/11/phpalbum-local-file-include-vuln.html
http://www.osvdb.org/21410
http://www.phpalbum.net/dw
http://www.securityfocus.com/bid/15651