Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4592

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-4592
Last Modified 07 Mar 2011 10:12:43
Published 16 Oct 2008 02:00:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4592

Summary

Directory traversal vulnerability in index.php in Sports Clubs Web Panel 0.0.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the p parameter.

Vulnerable Systems

Application

  • Sportspanel Sports Clubs Web Portal 0.0.1


References

XF - sportsclubs-index-file-include(45062)

VUPEN - ADV-2008-2550

MILW0RM - 6427

SREASON - 4423


Last Updated: 27 May 2016 10:48:33