CVE-2002-2200
Published Dec 31, 2002
Last updated 16 years ago
Overview
- Description
- Benjamin Lefevre Dobermann FORUM 0.5 and earlier allows remote attackers to remotely include and execute malicious PHP files via the "subpath" variablein (1) entete.php, (2) enteteacceuil.php, (3) index.php, or (4) newtopic.php.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:benjamin_lefevre:dobermann_forum:0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5DB0A864-69B5-4393-A2ED-26C31DFBD508"
},
{
"criteria": "cpe:2.3:a:benjamin_lefevre:dobermann_forum:0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6BAE5277-E2CE-432D-B3B8-8EA481C80E65"
},
{
"criteria": "cpe:2.3:a:benjamin_lefevre:dobermann_forum:0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "34026C90-6790-4D56-A547-133F363B0D28"
},
{
"criteria": "cpe:2.3:a:benjamin_lefevre:dobermann_forum:0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "87B7B167-4979-49D8-BE7A-B71FA7851782"
},
{
"criteria": "cpe:2.3:a:benjamin_lefevre:dobermann_forum:0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2DCC3284-DE13-4162-B4A6-99F4445A39EB"
}
],
"operator": "OR"
}
]
}
]