CVE-2005-4319

critical

Description

Directory traversal vulnerability in index2.php in Limbo CMS 1.0.4.2 and earlier allows remote attackers to include arbitrary PHP files via ".." sequences in the option parameter.

References

http://www.vupen.com/english/advisories/2005/2932

http://www.securityfocus.com/archive/1/419470/100/0/threaded

http://www.osvdb.org/21755

http://securityreason.com/securityalert/255

http://secunia.com/advisories/18063/

Details

Source: Mitre, NVD

Published: 2005-12-17

Updated: 2025-04-03

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Severity: Critical

EPSS

EPSS: 0.14392

Detections

Analytics