Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0287

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2008-0287
Last Modified 05 Sep 2008 05:34:41
Published 15 Jan 2008 09:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-0287

Summary

PHP remote file inclusion vulnerability in VisionBurst vcart 3.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the abs_path parameter to (1) index.php and (2) checkout.php.

Vulnerable Systems

Application

  • Visionburst Vcart 3.3.2


References

XF - vcart-checkout-index-file-include(39616)

BID - 27231

MILW0RM - 4889

SECUNIA - 28424


Last Updated: 27 May 2016 10:46:44