CyberSec.Space Logo
Back to CVE Browser

CVE-2008-4592

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0490%
EPSS Percentile26.72th
PublishedOct 16, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Directory traversal vulnerability in index.php in Sports Clubs Web Panel 0.0.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the p parameter.

Affected Platforms (CPE)

πŸ“¦
Sportspanel

Sports Clubs Web Portal

= 0.0.1

References & Advisories

πŸ”— http://securityreason.com/securityalert/4423
πŸ”— http://www.vupen.com/english/advisories/2008/2550
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/45062
πŸ”— https://www.exploit-db.com/exploits/6427
πŸ”— http://securityreason.com/securityalert/4423
πŸ”— http://www.vupen.com/english/advisories/2008/2550
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/45062
πŸ”— https://www.exploit-db.com/exploits/6427

Related Vulnerabilities

CVE-2008-073510.0

SQL injection vulnerability in mod/gallery/ajax/gallery_data.php in AuraCMS 2.2 allows remote attackers to execute arbitrary SQL c...

CVE-2008-034610.0

Unspecified vulnerability in the Oracle Jinitiator component in Oracle Application Server 1.3.1.27 and E-Business Suite 11.5.10.2 ...

CVE-2008-034310.0

Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, and 10.1.0.5 has u...

CVE-2008-038910.0

Unspecified vulnerability in the serveServletsByClassnameEnabled feature in IBM WebSphere Application Server (WAS) 6.0 through 6.0...