CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
---|---|---|
5.3 | $0-$5k | 0.00 |
Summary
A vulnerability has been found in PBSite and classified as critical. This vulnerability affects unknown code of the file setcookie.php. The manipulation leads to an unknown weakness. There is no exploit available. Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Details
A vulnerability, which was classified as critical, was found in PBSite (Content Management System) (affected version unknown). This affects an unknown functionality of the file setcookie.php. The impact remains unknown.
The weakness was published 06/01/2007 (Website). It is possible to read the advisory at securityreason.com. Technical details of the vulnerability are known, but there is no available exploit.
After immediately, there has been an exploit disclosed. By approaching the search of inurl:setcookie.php it is possible to find vulnerable targets with Google Hacking.
There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
The vulnerability is also documented in the databases at X-Force (34675) and OSVDB (38761†). Similar entries are available at VDB-37153, VDB-86114, VDB-86116 and VDB-86117. Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Product
Type
Name
License
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 5.3VulDB Meta Temp Score: 5.3
VulDB Base Score: 5.3
VulDB Temp Score: 5.3
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
AV | AC | Au | C | I | A |
---|---|---|---|---|---|
💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
unlock | unlock | unlock | unlock | unlock | unlock |
unlock | unlock | unlock | unlock | unlock | unlock |
unlock | unlock | unlock | unlock | unlock | unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
Exploiting
Class: Local Privilege EscalationCWE: Unknown
CAPEC: 🔍
ATT&CK: 🔍
Local: Yes
Remote: No
Availability: 🔍
Status: Not defined
Google Hack: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
0-Day | unlock | unlock | unlock | unlock |
---|---|---|---|---|
Today | unlock | unlock | unlock | unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: no mitigation knownStatus: 🔍
0-Day Time: 🔍
Exploit Delay Time: 🔍
Timeline
06/01/2007 🔍06/01/2007 🔍
11/02/2007 🔍
05/09/2016 🔍
12/19/2018 🔍
Sources
Advisory: securityreason.comStatus: Not defined
GCVE (VulDB): GCVE-100-86115
X-Force: 34675
OSVDB: 38761 - PBSite setcookie.php Multiple Parameter Remote File Inclusion
See also: 🔍
Entry
Created: 05/09/2016 14:57Updated: 12/19/2018 08:25
Changes: 05/09/2016 14:57 (38), 12/19/2018 08:25 (1)
Complete: 🔍
Cache ID: 216:A30:103
No comments yet. Languages: en.
Please log in to comment.