Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6734

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-6734
Last Modified 22 Apr 2009 12:00:00
Published 21 Apr 2009 02:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-6734

Summary

Directory traversal vulnerability in Public/index.php in Keller Web Admin CMS 0.94 Pro allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the action parameter.

Vulnerable Systems

Application

  • Keller Web Admin Kwa 0.94


References

XF - kellerwebadmin-index-file-include(43373)

BID - 29971

MILW0RM - 5956

MILW0RM - 5940


Last Updated: 27 May 2016 10:49:18