CyberSec.Space Logo
Back to CVE Browser

CVE-2008-0502

HIGH
7.5
CVSS Severity Score
EPSS Score0.1520%
EPSS Percentile12.06th
PublishedJan 31, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

PHP remote file inclusion vulnerability in templates/Official/part_userprofile.php in Connectix Boards 0.8.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the template_path parameter.

Affected Platforms (CPE)

πŸ“¦
Connectix

Connectix Boards

<= 0.8.2
πŸ“¦
Connectix

Connectix Boards

= 0.8.1

References & Advisories

πŸ”— http://secunia.com/advisories/28704
πŸ”— http://www.securityfocus.com/bid/27506
πŸ”— http://www.vupen.com/english/advisories/2008/0363
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/40040
πŸ”— https://www.exploit-db.com/exploits/5012
πŸ”— http://secunia.com/advisories/28704
πŸ”— http://www.securityfocus.com/bid/27506
πŸ”— http://www.vupen.com/english/advisories/2008/0363

Related Vulnerabilities

CVE-2007-12546.5

SQL injection vulnerability in part.userprofile.php in Connectix Boards 0.7 and earlier allows remote authenticated users to execu...

CVE-2007-12556.0

Unrestricted file upload vulnerability in admin.bbcode.php in Connectix Boards 0.7 and earlier allows remote authenticated adminis...

CVE-2008-461510.0

Unspecified vulnerability in i_utils.asp in PortalApp before 4.01a has unknown impact and attack vectors.

CVE-2008-034310.0

Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, and 10.1.0.5 has u...