CVE-2008-3504

Published Aug 6, 2008

Last updated 7 years ago

Overview

Description: Unspecified vulnerability in mask PHP File Manager (mPFM) before 2.3 has unknown impact and remote attack vectors related to "manipulation of cookies."
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-287

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mpfm:mask_php_file_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C7F8D3A5-25A6-4D4B-8ED7-22598D25123C",
            "versionEndIncluding": "2.2"
          },
          {
            "criteria": "cpe:2.3:a:mpfm:mask_php_file_manager:*:a:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "93BD6144-64EC-4F62-9E03-8EE02B7914CA",
            "versionEndIncluding": "2.2"
          },
          {
            "criteria": "cpe:2.3:a:mpfm:mask_php_file_manager:*:c:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1ADD7339-AB91-4C53-B98A-6C5B441413A1",
            "versionEndIncluding": "2.2"
          },
          {
            "criteria": "cpe:2.3:a:mpfm:mask_php_file_manager:*:d:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B88CBC22-08C0-4C56-83F1-F04A3F99E22F",
            "versionEndIncluding": "2.2"
          },
          {
            "criteria": "cpe:2.3:a:mpfm:mask_php_file_manager:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B19D1B5-305F-4DB4-886F-00A5099E5928"
          },
          {
            "criteria": "cpe:2.3:a:mpfm:mask_php_file_manager:1.1:a:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AFF10372-2A42-49E7-B4BC-61B5EC98B6BB"
          },
          {
            "criteria": "cpe:2.3:a:mpfm:mask_php_file_manager:1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D1D42BE-988D-4DE6-ACD1-3BFD174ECA61"
          },
          {
            "criteria": "cpe:2.3:a:mpfm:mask_php_file_manager:1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5BF6A201-E395-4786-9148-7256FB9F139B"
          },
          {
            "criteria": "cpe:2.3:a:mpfm:mask_php_file_manager:1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ACAE72C6-6D0E-4D68-810B-839FA3B94CC5"
          },
          {
            "criteria": "cpe:2.3:a:mpfm:mask_php_file_manager:1.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BE88CF08-D77E-4BA8-B4E2-13D6FF76AAF9"
          },
          {
            "criteria": "cpe:2.3:a:mpfm:mask_php_file_manager:1.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "235639C0-E120-4EAC-9DB6-1FE828DA8D3B"
          },
          {
            "criteria": "cpe:2.3:a:mpfm:mask_php_file_manager:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1313A3D0-BBF7-41AA-BD60-1E1010471A3A"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References