CVE-2008-0602

Directory traversal vulnerability in index.php in All Club CMS (ACCMS) 0.0.1f and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the class_name parameter.

Published: Feb 6, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-0602
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-22

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
all_club_cms / all_club_cms	-	0.0.1f.x

https://www.exploit-db.com/exploits/5061

Vulnerability Database

289,697

CVE-2008-0602