Vulnerability CVE-2008-2064
Published: 2008-05-02   Modified: 2012-02-12

Description:
Multiple unspecified vulnerabilities in PhpGedView before 4.1.5 have unknown impact and attack vectors related to "a fundamental design flaw in the interface (API) to connect phpGedView with external programs like content management systems."

Type:

CWE-noinfo

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Phpgedview -> Phpgedview 

 References:
http://www.phpgedview.net/
http://www.debian.org/security/2008/dsa-1580
http://sourceforge.net/project/shownotes.php?group_id=55456&release_id=595222
http://xforce.iss.net/xforce/xfdb/42085
http://www.securityfocus.com/bid/28978
http://secunia.com/advisories/30256
http://secunia.com/advisories/29989
Copyright 2024, cxsecurity.com

 

Back to Top