CVE-2003-0599

critical

Description

Unknown vulnerability in the Virtual File System (VFS) capability for phpGroupWare 0.9.16preRC and versions before 0.9.14.004 with unknown implications, related to the VFS path being under the web document root.

References

http://www.phpgroupware.org

http://www.debian.org/security/2003/dsa-365

http://mail.gnu.org/archive/html/phpgroupware-users/2003-07/msg00035.html

Details

Source: Mitre, NVD

Published: 2003-08-27

Updated: 2008-09-05

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical