Phpgroupware Vulnérabilités

Chronologie

Version

0.9.16.00010
0.9.16.0028
0.9.16.0038
0.9.16.0126
0.9.14.0036

Contre-mesures

Official Fix24
Temporary Fix0
Workaround0
Unavailable0
Not Defined8

Exploitabilité

High0
Functional2
Proof-of-Concept14
Unproven0
Not Defined16

Vecteur d'accès

Not Defined0
Physical0
Local6
Adjacent0
Network26

Authentification

Not Defined0
High0
Low6
None26

Interaction de l'utilisateur

Not Defined0
Required4
None28

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤46
≤52
≤64
≤72
≤814
≤92
≤102

CVSSv3 Temp

≤10
≤20
≤30
≤46
≤54
≤64
≤714
≤80
≤92
≤102

VulDB

≤10
≤20
≤30
≤46
≤52
≤64
≤72
≤814
≤92
≤102

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k2
<2k14
<5k16
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k32
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

🔴 CTI Activités

Affected Versions (33): 0.9.1, 0.9.2, 0.9.3, 0.9.4, 0.9.5, 0.9.6, 0.9.7, 0.9.8, 0.9.9, 0.9.9 Pl1, 0.9.12, 0.9.13, 0.9.14, 0.9.14.003, 0.9.14.004, 0.9.14.005, 0.9.14.006, 0.9.14.007, 0.9.16, 0.9.16 Rc1, 0.9.16.001, 0.9.16.002, 0.9.16.003, 0.9.16.005, 0.9.16.01, 0.9.16.011, 0.9.16.012, 0.9.16.014, 0.9.16.015, 0.9.16.12, 0.9.16prerc, 0.9.16rc1, 0.9.16rc2

Type de logiciel: Groupware Software

PubliéBaseTempVulnérabilité0dayAujourd'huiExpConCTICVE
19/05/20107.36.6phpGroupWare class.sessions_db.inc.php sql injection$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.02CVE-2010-0404
19/05/20107.36.6phpGroupWare about.php directory traversal$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2010-0403
22/07/20093.33.3phpGroupWare class.uiXport.inc.php directory traversal$0-$5k$0-$5kNot DefinedNot Defined0.02
22/07/20094.34.1phpGroupWare login.php cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2009-4416
22/07/20097.37.0phpGroupWare csv_import.php directory traversal$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2009-4415
22/07/20097.37.0phpGroupWare login.php sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2009-4414
31/08/20066.56.0phpGroupWare directory traversal$0-$5k$0-$5kFunctionalOfficial Fix0.00CVE-2006-4458
17/11/20057.37.0phpgroupware index.php directory traversal$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2005-3347
31/08/20054.34.1phpGroupWare cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2005-2761
31/12/20049.89.4phpGroupWare Remote Code Execution$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2004-2407

21 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 21 results.

PrécédentAperçuSuivant

Interested in the pricing of exploits?

See the underground prices here!