CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2005-0680

HIGH
7.5
CVSS Severity Score
EPSS Score0.1020%
EPSS Percentile23.81th
Published2005年3月7日
Last Modified2026年4月16日

Vulnerability Description

PHP remote file inclusion vulnerability in download_center_lite.inc.php for Download Center Lite 1.6 allows remote attackers to execute arbitrary PHP code by modifying the script_root parameter to reference a URL on a remote web server that contains the code.

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=110996056601719&w=2
🔗 http://secunia.com/advisories/14513
🔗 http://www.stadtaus.com/forum/p-5895.html
🔗 http://www.stadtaus.com/forum/t-1579.html
🔗 http://marc.info/?l=bugtraq&m=110996056601719&w=2
🔗 http://secunia.com/advisories/14513
🔗 http://www.stadtaus.com/forum/p-5895.html
🔗 http://www.stadtaus.com/forum/t-1579.html

相關漏洞威脅

CVE-2005-052010.0

ArGoSoft FTP Server before 1.4.2.8 allows remote attackers to read arbitrary files via shortcut (.LNK) files in the SITE COPY comm...

CVE-2005-041710.0

Unknown "high risk" vulnerability in DB2 Universal Database 8.1 and earlier has unknown impact and attack vectors. NOTE: due to t...

CVE-2005-051910.0

ArGoSoft FTP Server before 1.4.2.7 allows remote attackers to read arbitrary files by uploading a ZIP file containing a shortcut (...

CVE-2005-001110.0

Multiple vulnerabilities in fliccd, when installed setuid root as part of the kdeedu Kstars support for Instrument Neutral Distrib...