Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2002-2200

Published: 31/12/2002 Updated: 10/09/2008
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 770
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Benjamin Lefevre

Vulnerability Summary

Benjamin Lefevre Dobermann FORUM 0.5 and previous versions allows remote malicious users to remotely include and execute malicious PHP files via the "subpath" variablein (1) entete.php, (2) enteteacceuil.php, (3) index.php, or (4) newtopic.php.

Vulnerable Product Search on Vulmon Subscribe to Product

benjamin lefevre dobermann forum 0.2

benjamin lefevre dobermann forum 0.4

benjamin lefevre dobermann forum 0.1

benjamin lefevre dobermann forum 0.3

benjamin lefevre dobermann forum 0.5

Exploits

Exploit DB: Benjamin Lefevre Dobermann Forum 0.x - 'enteteacceuil.php?subpath' Remote File Inclusion
source: wwwsecurityfocuscom/bid/6057/info Dobermann Forum is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers This issue is present in several PHP script files provided with Dobermann An attacker may exploit this by supplying a path to a file on a remote host as a value for the 'su ...
Exploit DB: Benjamin Lefevre Dobermann Forum 0.x - 'entete.php?subpath' Remote File Inclusion
source: wwwsecurityfocuscom/bid/6057/info Dobermann Forum is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers This issue is present in several PHP script files provided with Dobermann An attacker may exploit this by supplying a path to a file on a remote host as a value for the 'sub ...
Exploit DB: Benjamin Lefevre Dobermann Forum 0.x - 'index.php?subpath' Remote File Inclusion
source: wwwsecurityfocuscom/bid/6057/info Dobermann Forum is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers This issue is present in several PHP script files provided with Dobermann An attacker may exploit this by supplying a path to a file on a remote host as a value for the 's ...
Exploit DB: Benjamin Lefevre Dobermann Forum 0.x - 'newtopic.php?subpath' Remote File Inclusion
source: wwwsecurityfocuscom/bid/6057/info Dobermann Forum is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers This issue is present in several PHP script files provided with Dobermann An attacker may exploit this by supplying a path to a file on a remote host as a value for the ' ...

References

NVD-CWE-Otherhttp://www.securityfocus.com/bid/6057http://www.iss.net/security_center/static/10492.phphttp://seclists.org/lists/bugtraq/2002/Oct/0397.htmlhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/21968/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925CVE-2023-41826LFICVE-2022-22364CVE-2024-2887command injectionremote code executionCVE-2024-34446CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook