Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2699

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-2699
Last Modified 08 Apr 2009 01:26:45
Published 13 Jun 2008 03:41:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-2699

Summary

Multiple directory traversal vulnerabilities in Galatolo WebManager (GWM) 1.0 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in (1) the plugin parameter to admin/plugins.php or (2) the com parameter to index.php.

Vulnerable Systems

Application

  • Gwm Galatolo Webmanager 1.0


References

XF - galatolo-index-file-include(42923)

BID - 29595

MILW0RM - 5758


Last Updated: 27 May 2016 10:47:57