Phpecho Cms Vulnerabilità

Sequenza temporale

Versione

2.0-rc34
1.02
1.12
1.22
1.32

Contromisure

Official Fix2
Temporary Fix0
Workaround0
Unavailable2
Not Defined2

Sfruttabilità

High2
Functional0
Proof-of-Concept2
Unproven0
Not Defined2

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent0
Network6

Autenticazione

Not Defined0
High0
Low0
None6

Interazione dell'utente

Not Defined0
Required0
None6

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤86
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤50
≤60
≤74
≤82
≤90
≤100

VulDB

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤86
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k0
<2k0
<5k6
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k6
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

Affected Versions (9): 1.0, 1.1, 1.2, 1.3, 1.4, 2.0, 2.0-rc1, 2.0-rc2, 2.0-rc3

Tipo di software: Content Management System

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
09/07/20097.36.9PHPEcho CMS index.php sql injection$0-$5k$0-$5kProof-of-ConceptNot Defined0.00CVE-2009-2402
09/07/20094.34.3PHPEcho CMS cross site scripting$0-$5k$0-$5kHighUnavailable0.00CVE-2009-2401
23/02/20087.37.3Tigran Abrahamyan PHPEcho CMS Smarty.class.php fetch escalazione di privilegi$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2008-7034
18/01/20087.37.3PHPEcho CMS index.php sql injection$0-$5k$0-$5kHighUnavailable0.00CVE-2008-0355
24/05/20077.36.9PHPEcho CMS gallery.php sql injection$0-$5k$0-$5kProof-of-ConceptNot Defined0.00CVE-2007-2866
13/03/20077.37.0PHPEcho CMS Admin Panel sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2007-3335

PrecedenteVisione D'insiemeIl prossimo

Do you want to use VulDB in your project?

Use the official API to access entries easily!