CVE-2002-2045 in X-statالمعلومات

الملخص

بحسب MITRE

x_stat_admin.php in x-stat 2.3 and earlier allows remote attackers to (1) execute PHP commands such as phpinfo or (2) obtain the full path of the web server via an invalid action parameter, which leaks the pathname in an error message.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

14/07/2005

إفشاء

31/12/2002

الاعتدال

تمت الموافقة

إدخال

VDB-19687

CPE

جاهز

CWE

CWE-269 (مؤكد)

CVSS

6.4 (NVD)

EPSS

0.01712

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-2045
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-2045
CVE Details	https://www.cvedetails.com/cve/CVE-2002-2045/

التالي ▸نظرة عامة ◂ السابق

Do you need the next level of professionalism?

Upgrade your account now!