Vulnerability Details : CVE-2003-1298
Potential exploit
Multiple directory traversal vulnerabilities in siteman.php3 in AnyPortal(php) 12 MAY 00 allow remote attackers to (1) create, (2) delete, (3) save, and (4) upload files by navigating to the root directory and entering a filename beginning with "./.." (dot slash dot dot).
Vulnerability category: Directory traversal
Products affected by CVE-2003-1298
- cpe:2.3:a:anyportal_php:anyportal_php:0.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2003-1298
0.82%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 73 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2003-1298
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
References for CVE-2003-1298
-
http://www.vupen.com/english/advisories/2006/1053
Site en construction
-
http://nger.org/anyportal/forum/read.php?f=1&i=152&t=152#reply_152
Exploit
-
http://www.securityfocus.com/bid/17197
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/25396
-
http://secunia.com/advisories/19359
Vendor Advisory
-
http://www.osvdb.org/23984
Exploit
Jump to