CVE-2008-5943

Published: 22/01/2009 Updated: 08/08/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 760

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Multiple directory traversal vulnerabilities in NavBoard 16 (2.6.0) allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the module parameter to (1) admin_modules.php and (2) modules.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
navboard navboard 16

source: wwwsecurityfocuscom/bid/30687/info Navboard is prone to multiple local file-include vulnerabilities and a cross-site scripting vulnerability An attacker can exploit the local file-include vulnerability using directory-traversal strings to execute local script code in the context of the application This may allow the attacker ...

source: wwwsecurityfocuscom/bid/30687/info Navboard is prone to multiple local file-include vulnerabilities and a cross-site scripting vulnerability An attacker can exploit the local file-include vulnerability using directory-traversal strings to execute local script code in the context of the application This may allow the attacke ...

CWE-22 http://www.securityfocus.com/bid/30687 http://packetstorm.linuxsecurity.com/0808-exploits/navboard-lfixss.txt http://secunia.com/advisories/31463 https://exchange.xforce.ibmcloud.com/vulnerabilities/44450 https://nvd.nist.gov https://www.exploit-db.com/exploits/32246/

CVE-2008-5943

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect