Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1642


Vulnerability Score 7.5 7.5
CVE Id CVE-2008-1642
Last Modified 05 Sep 2008 05:38:17
Published 02 Apr 2008 01:44:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Directory traversal vulnerability in index.php in Sava's GuestBook 2.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the action parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Systems


  • Savas Place Savas Guestbook 2.0


XF - savasguestbook-index-file-include(41596)

BID - 28536

SECUNIA - 29592

Last Updated: 27 May 2016 10:47:36