NVD

Id
4847  
Name
CVE-2008-5060  
Description
Multiple PHP remote file inclusion vulnerabilities in ModernBill 4.4 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the DIR parameter to (1) export_batch.inc.php, (2) run_auto_suspend.cron.php, and (3) send_email_cache.php in include/scripts/; (4) include/misc/mod_2checkout/2checkout_return.inc.php; and (5) include/html/nettools.popup.php, different vectors than CVE-2006-4034 and CVE-2005-1054.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-03  
Published
2008-11-13  
Modified Date
2009-01-29  
Seq
2008-5060  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
30524 4847 CVE-2008-5060 4587  View
30525 4847 CVE-2008-5060 6916  View
30526 4847 CVE-2008-5060 modernbill-dir-file-include(46513)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
49746 JVNDB-2008-005056 ModernBill における PHP リモートファイルインクルージョンの脆弱性 ModernBill には、PHP リモートファイルインクルージョンの脆弱性が存在します。 CVE-2008-5060 35173 CVE-2008-5060 4847 10 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-005056.html 2008-11-13 2012-09-25 View