NVD

Id
6223  
Name
CVE-2008-6492  
Description
Unrestricted file upload vulnerability in process.php in Tizag Countdown Creator 3 allows remote attackers to execute arbitrary code by uploading a file with an executable extension via index.php, then accessing the uploaded file via a direct request to the file in pics/. NOTE: some of these details are obtained from third party information.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-03  
Published
2009-03-19  
Modified Date
2011-03-07  
Seq
2008-6492  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
36775 6223 CVE-2008-6492 7354  View
36776 6223 CVE-2008-6492 32661  View
36777 6223 CVE-2008-6492 countdown-creator-index-file-upload(47129)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
44484 JVNDB-2009-005491 Tizag Countdown Creator の process.php における任意のコードを実行される脆弱性 Tizag Countdown Creator の process.php は、ファイルをアップロードされることにより、任意のコードを実行される脆弱性が存在します。 CVE-2008-6492 36605 CVE-2008-6492 6223 6.8 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-005491.html 2009-03-19 2012-12-20 View