2.6
CVSSv2

CVE-2008-4164

Published: 22/09/2008 Updated: 29/09/2017
CVSS v2 Base Score: 2.6 | Impact Score: 2.9 | Exploitability Score: 4.9
VMScore: 265
Vector: AV:N/AC:H/Au:N/C:P/I:N/A:N

Vulnerability Summary

cron.php in MemHT Portal 3.9.0 and previous versions allows remote malicious users to obtain sensitive information via a direct request, which reveals the installation path in an error message.

Vulnerable Product Search on Vulmon Subscribe to Product

memht memht portal

memht memht portal 3.8.5

memht memht portal 3.6.0

memht memht portal 3.1

memht memht portal 3.4.5

memht memht portal 3.4

Exploits

#!/usr/bin/perl # # MemHT Portal <= 390 Perl exploit # # discovered & written by Ams # ax330d [doggy] gmail [dot] com # # DESCRIPTION: # Script /inc/inc_statisticsphp accepts unfiltered $_COOKIE's, # ($_COOKIE['stats_res']) which later goes to MySQL request So we are able to make # sql injection # This exploit tries to create shell in / ...