CVE-2008-5071

Published: 14/11/2008 Updated: 29/09/2017

CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8

VMScore: 905

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

Multiple eval injection vulnerabilities in itpm_estimate.php in Yoxel 1.23beta and previous versions allow remote authenticated users to execute arbitrary PHP code via the proj_id parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
yoxel yoxel 1.21
yoxel yoxel 1.20
yoxel yoxel 1.18beta
yoxel yoxel 1.17beta
yoxel yoxel 1.09beta
yoxel yoxel 1.08beta
yoxel yoxel 1.07beta
yoxel yoxel 1.22
yoxel yoxel 1.21beta
yoxel yoxel 1.19beta
yoxel yoxel 1.11beta
yoxel yoxel 1.10beta
yoxel yoxel 1.20beta
yoxel yoxel 1.13beta
yoxel yoxel 1.16beta
yoxel yoxel 1.15beta
yoxel yoxel 1.06beta
yoxel yoxel
yoxel yoxel 1.22beta
yoxel yoxel 1.14beta
yoxel yoxel 1.12beta

:::::::- :::::: ::: ;;, `';, ;; ;;;`;;;;, `;;; `[[ [[[[' [[[ [[[[[ '[[ $$, $$$$ $$$ $$$ "Y$c$$ 888_,o8P'88 d888 888 Y88 MMMMP"` "YmmMMMM"" MMM YM [ Discovered by dun \ dun[at]strcpypl ] ############################################################### # [ Yoxel <= ...

CWE-94 http://www.securityfocus.com/bid/31448 http://securityreason.com/securityalert/4591 https://exchange.xforce.ibmcloud.com/vulnerabilities/45488 https://www.exploit-db.com/exploits/6606 https://nvd.nist.gov https://www.exploit-db.com/exploits/6606/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-5071

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect