CyberSec.Space Logo
Back to CVE Browser

CVE-2008-2041

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0270%
EPSS Percentile22.31th
PublishedApr 30, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple unspecified vulnerabilities in eGroupWare before 1.4.004 have unspecified attack vectors and "grave" impact when the web server has write access to a directory under the web document root.

Affected Platforms (CPE)

πŸ“¦
Egroupware

Egroupware

<= 1.4.003
πŸ“¦
Egroupware

Egroupware

= 1.4.001
πŸ“¦
Egroupware

Egroupware

= 1.4.002

References & Advisories

πŸ”— http://secunia.com/advisories/30073
πŸ”— http://www.egroupware.org/news
πŸ”— http://www.gentoo.org/security/en/glsa/glsa-200805-04.xml
πŸ”— http://www.securityfocus.com/bid/28817
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/42141
πŸ”— http://secunia.com/advisories/30073
πŸ”— http://www.egroupware.org/news
πŸ”— http://www.gentoo.org/security/en/glsa/glsa-200805-04.xml

Related Vulnerabilities

CVE-2007-315510.0

Unspecified vulnerability in eGroupWare before 1.2.107-2 has unknown impact and attack vectors related to ADOdb. NOTE: due to lac...

CVE-2007-315410.0

Unspecified vulnerability in Walter Zorn wz_tooltip.js (aka wz_tooltips) before 4.01, as used by eGroupWare before 1.2.107-2 and o...

CVE-2014-29888.5

EGroupware Enterprise Line (EPL) before 1.1.20140505, EGroupware Community Edition before 1.8.007.20140506, and EGroupware before ...

CVE-2005-12037.5

Multiple SQL injection vulnerabilities in index.php in eGroupware before 1.0.0.007 allow remote attackers to execute arbitrary SQL...