CVE-2004-1403
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
31/12/2004
Last modified:
11/07/2017
Description
PHP remote file inclusion vulnerability in index.php in GNUBoard 3.39 and earlier allows remote attackers to execute arbitrary PHP code by modifying the doc parameter to reference a URL on a remote web server that contains the code.
Impact
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:sir:gnuboard:3.30:*:*:*:*:*:*:* | ||
cpe:2.3:a:sir:gnuboard:3.31:*:*:*:*:*:*:* | ||
cpe:2.3:a:sir:gnuboard:3.32:*:*:*:*:*:*:* | ||
cpe:2.3:a:sir:gnuboard:3.33:*:*:*:*:*:*:* | ||
cpe:2.3:a:sir:gnuboard:3.34:*:*:*:*:*:*:* | ||
cpe:2.3:a:sir:gnuboard:3.35:*:*:*:*:*:*:* | ||
cpe:2.3:a:sir:gnuboard:3.36:*:*:*:*:*:*:* | ||
cpe:2.3:a:sir:gnuboard:3.37:*:*:*:*:*:*:* | ||
cpe:2.3:a:sir:gnuboard:3.38:*:*:*:*:*:*:* | ||
cpe:2.3:a:sir:gnuboard:3.39:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page