CyberSec.Space Logo
Back to CVE Browser

CVE-2003-0599

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0600%
EPSS Percentile29.28th
PublishedAug 27, 2003
Last ModifiedApr 16, 2026

Vulnerability Description

Unknown vulnerability in the Virtual File System (VFS) capability for phpGroupWare 0.9.16preRC and versions before 0.9.14.004 with unknown implications, related to the VFS path being under the web document root.

Affected Platforms (CPE)

πŸ“¦
Phpgroupware

Phpgroupware

<= 0.9.14.004
πŸ“¦
Phpgroupware

Phpgroupware

= 0.9.16prerc

References & Advisories

πŸ”— http://mail.gnu.org/archive/html/phpgroupware-users/2003-07/msg00035.html
πŸ”— http://www.debian.org/security/2003/dsa-365
πŸ”— http://www.phpgroupware.org
πŸ”— http://mail.gnu.org/archive/html/phpgroupware-users/2003-07/msg00035.html
πŸ”— http://www.debian.org/security/2003/dsa-365
πŸ”— http://www.phpgroupware.org

Related Vulnerabilities

CVE-2004-240610.0

Unknown "overflow" in the phpgw_config table for phpGroupWare before 0.9.14.002 has unknown attack vectors and impact.

CVE-2004-240710.0

Unknown vulnerability in phpGroupWare before 0.9.14.002 has unknown attack vectors and impact, related to a "security hole" in the...

CVE-2001-004310.0

phpGroupWare before 0.9.7 allows remote attackers to execute arbitrary PHP commands by specifying a malicious include file in the ...

CVE-2003-06577.5

Multiple SQL injection vulnerabilities in the infolog module for phpgroupware 0.9.14 and earlier could allow remote attackers to c...