CVE

Id
36857  
CVE No.
CVE-2008-6740  
Status
Candidate  
Description
PHP remote file inclusion vulnerability in html/admin/modules/plugin_admin.php in HoMaP-CMS 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the _settings[pluginpath] parameter.  
Phase
Assigned (20090421)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
401354 36857 CVE-2008-6740 EXPLOIT-DB:5902  View
401355 36857 CVE-2008-6740 URL:https://www.exploit-db.com/exploits/5902/  View
401356 36857 CVE-2008-6740 MILW0RM:5902  View
401357 36857 CVE-2008-6740 URL:http://www.milw0rm.com/exploits/5902  View
401358 36857 CVE-2008-6740 BID:29877  View
401359 36857 CVE-2008-6740 URL:http://www.securityfocus.com/bid/29877  View
401360 36857 CVE-2008-6740 XF:homap-pluginadmin-file-include(43251)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
45641 JVNDB-2008-000033 複数のサイボウズ製品におけるクロスサイトリクエストフォージェリの脆弱性 サイボウズ株式会社が提供する複数の製品には、クロスサイトリクエストフォージェリの脆弱性が存在します。 CVE-2008-6744 36857 2.6 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000033.html  View