Detections
Analytics

CVE-2005-3639

high

Description

PHP file inclusion vulnerability in the osTicket module in Help Center Live before 2.0.3 allows remote attackers to access or include arbitrary files via the file parameter, possibly due to a directory traversal vulnerability.

References

http://www.vupen.com/english/advisories/2005/2451

http://www.securityfocus.com/bid/15404

http://secunia.com/advisories/17580

Details

Source: Mitre, NVD

Published: 2005-11-16

Updated: 2011-03-08

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High