7.5
CVE-2008-3504
- EPSS 1.12%
- Veröffentlicht 06.08.2008 18:41:00
- Zuletzt bearbeitet 16.06.2026 22:55:56
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginUnspecified vulnerability in mask PHP File Manager (mPFM) before 2.3 has unknown impact and remote attack vectors related to "manipulation of cookies."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mpfm ≫ Mask Php File Manager Version <= 2.2
Mpfm ≫ Mask Php File Manager Updatea Version <= 2.2
Mpfm ≫ Mask Php File Manager Updatec Version <= 2.2
Mpfm ≫ Mask Php File Manager Updated Version <= 2.2
Mpfm ≫ Mask Php File Manager Version1.0
Mpfm ≫ Mask Php File Manager Version1.1 Updatea
Mpfm ≫ Mask Php File Manager Version1.2
Mpfm ≫ Mask Php File Manager Version1.3
Mpfm ≫ Mask Php File Manager Version1.4
Mpfm ≫ Mask Php File Manager Version1.5
Mpfm ≫ Mask Php File Manager Version1.6
Mpfm ≫ Mask Php File Manager Version2.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.12% | 0.619 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
CWE-287 Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
http://secunia.com/advisories/30833
http://sourceforge.net/project/shownotes.php?release_id=608915
http://www.securityfocus.com/bid/29926
https://exchange.xforce.ibmcloud.com/vulnerabilities/43333