CyberSec.Space Logo
Back to CVE Browser

CVE-2008-3455

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0550%
EPSS Percentile30.89th
PublishedAug 4, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

PHP remote file inclusion vulnerability in include/admin.php in JnSHosts PHP Hosting Directory 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the rd parameter.

Affected Platforms (CPE)

πŸ“¦
Jnshosts

Php Hosting Directory

= 2.0

References & Advisories

πŸ”— http://securityreason.com/securityalert/4106
πŸ”— http://www.securityfocus.com/bid/30428
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/44108
πŸ”— https://www.exploit-db.com/exploits/6160
πŸ”— http://securityreason.com/securityalert/4106
πŸ”— http://www.securityfocus.com/bid/30428
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/44108
πŸ”— https://www.exploit-db.com/exploits/6160

Related Vulnerabilities

CVE-2026-537879.8

Amasty Order Attributes for Magento 2 before version 4.0.0 contains an unauthenticated arbitrary file upload vulnerability that al...

CVE-2019-90029.8

An issue was discovered in Tiny Issue 1.3.1 and pixeline Bugs through 1.3.2c. install/config-setup.php allows remote attackers to ...

CVE-2007-57337.5

Unrestricted file upload vulnerability in upload/upload.php in Japanese PHP Gallery Hosting, when Open directory mode is enabled, ...

CVE-2008-34547.5

JnSHosts PHP Hosting Directory 2.0 allows remote attackers to bypass authentication and gain administrative access by setting the ...