Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6090

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-6090
Last Modified 19 Aug 2009 01:23:05
Published 06 Feb 2009 02:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-6090

Summary

Directory traversal vulnerability in members.php in ScriptsEz Mini Hosting Panel allows remote attackers to read arbitrary local files via a .. (dot dot) in the dir parameter in a view action.

Vulnerable Systems

Application

  • Scriptsez Mini Hosting Panel -


References

XF - mhp-members-file-include(45800)

BID - 31701

MILW0RM - 6713

SECUNIA - 32212


Last Updated: 27 May 2016 10:49:04