Published: 05/12/2008 Updated: 29/09/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Multiple PHP remote file inclusion vulnerabilities in Pie 0.5.3 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) lib parameter to files in lib/action/ including (a) alias.php, (b) cancel.php, (c) context.php, (d) deadlinks.php, (e) delete.php, and others; and the (2) GLOBALS[pie][library_path] parameter to files in lib/share/ including (f) diff.php, (g) file.php, (h) locale.php, (i) mapfile.php, (j) page.php, and others.

Vulnerable Product	Search on Vulmon	Subscribe to Product
pie pie 0.5.3

=========================================================================================== [o] Pie Web M{a,e}sher 053 Multiple Remote File Inclusion Vulnerability Software : Pie Web M{a,e}sher version 053 Vendor : pieekkaiaorg/ Download : pieekkaiaorg/page/Download Author : NoGe Con ...

CWE-94 http://www.securityfocus.com/bid/32455 http://securityreason.com/securityalert/4687 https://exchange.xforce.ibmcloud.com/vulnerabilities/46819 https://www.exploit-db.com/exploits/7221 https://nvd.nist.gov https://www.exploit-db.com/exploits/7221/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-5332

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect