CVE-2008-3031

Directory traversal vulnerability in index.php in Simple PHP Agenda 2.2.4 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter.

Link	Resource
http://www.securityfocus.com/bid/30034	Exploit
http://secunia.com/advisories/30909	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/43540
https://www.exploit-db.com/exploits/5982

Configuration 1

cpe:2.3:a:simple_php_agenda:simple_php_agenda:*:*:*:*:*:*:*:* cpe:2.3:a:simple_php_agenda:simple_php_agenda:2.2.0:*:*:*:*:*:*:* cpe:2.3:a:simple_php_agenda:simple_php_agenda:2.0.0:*:*:*:*:*:*:* cpe:2.3:a:simple_php_agenda:simple_php_agenda:2.2.1:*:*:*:*:*:*:* cpe:2.3:a:simple_php_agenda:simple_php_agenda:2.2.2:*:*:*:*:*:*:* cpe:2.3:a:simple_php_agenda:simple_php_agenda:2.2.3:*:*:*:*:*:*:* cpe:2.3:a:simple_php_agenda:simple_php_agenda:2.1.0:*:*:*:*:*:*:*

---

Published : 2008-07-07 06:41

Updated : 2017-10-19 01:30

---

NVD link : CVE-2008-3031

Mitre link : CVE-2008-3031

No products.

CWE-22