CVE-2008-1409

Multiple directory traversal vulnerabilities in the Default theme in Exero CMS 1.0.1 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the theme parameter to (1) index.php, (2) editpassword.php, and (3) avatar.php in usercp/; (4) custompage.php; (5) errors/404.php; (6) memberslist.php and (7) profile.php in members/; (8) index.php and (9) fullview.php in news/; and (10) nopermission.php.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.securityfocus.com/bid/28273
http://www.vupen.com/english/advisories/2008/0909/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41238
https://www.exploit-db.com/exploits/5265

Configurations

Configuration 1 (hide)

cpe:2.3:a:exero:exero_cms:1.0.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-03-20 10:44

Updated : 2024-02-28 11:21

NVD link : CVE-2008-1409

Mitre link : CVE-2008-1409

CVE.ORG link : CVE-2008-1409

JSON object : View

Products Affected

exero

exero_cms

CWE

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

{"id": "CVE-2008-1409", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2008-03-20T10:44:00.000", "references": [{"url": "http://www.securityfocus.com/bid/28273", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/0909/references", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41238", "source": "cve@mitre.org"}, {"url": "https://www.exploit-db.com/exploits/5265", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "Multiple directory traversal vulnerabilities in the Default theme in Exero CMS 1.0.1 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the theme parameter to (1) index.php, (2) editpassword.php, and (3) avatar.php in usercp/; (4) custompage.php; (5) errors/404.php; (6) memberslist.php and (7) profile.php in members/; (8) index.php and (9) fullview.php in news/; and (10) nopermission.php."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de salto de directorio en el tema Default de Exero CMS 1.0.1 permite a atacantes remotos incluir y ejecutar ficheros locales de su elecci\u00f3n mediante la utilizaci\u00f3n de secuencias de salto de directorio en el par\u00e1metro theme de (1) index.php, (2) editpassword.php, y (3) avatar.php en usercp/; (4) custompage.php; (5) errors/404.php; (6) memberslist.php y (7) profile.php en members/; (8) index.php y (9) fullview.php en news/; y (10) nopermission.php."}], "lastModified": "2017-09-29T01:30:41.473", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:exero:exero_cms:1.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EB145AE2-B4B1-449B-9A53-C5E2B4EFF571"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}