Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5066

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-5066
Last Modified 14 May 2009 01:30:51
Published 13 Nov 2008 12:24:03
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5066

Summary

PHP remote file inclusion vulnerability in upload/admin/frontpage_right.php in Agares Media ThemeSiteScript 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the loadadminpage parameter.

Vulnerable Systems

Application

  • Agaresmedia Themesitescript 1.0


References

VUPEN - ADV-2008-2959

BID - 31959

MILW0RM - 6859

SREASON - 4592


Last Updated: 27 May 2016 10:48:42