CVE-2005-0793

critical

Description

PHP remote file inclusion vulnerability in zpanel.php in ZPanel allows remote attackers to (1) execute arbitrary PHP code in ZPanel 2.0 or (2) include local files in ZPanel 2.5 beta 10 and earlier by modifying the page parameter.

References

http://www.securityfocus.com/bid/12809

http://marc.info/?l=bugtraq&m=111142323616309&w=2

http://marc.info/?l=bugtraq&m=111090324111053&w=2

Details

Source: Mitre, NVD

Published: 2005-03-15

Updated: 2016-10-18

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical