CVE-2010-5038
Status: Modified
Last modified:
10-10-2018
Published:
02-11-2011
7.5
SUMMARY CVE-2010-5038
PHP remote file inclusion vulnerability in contact/contact.php in Groone's Simple Contact Form allows remote attackers to execute arbitrary PHP code via a URL in the abspath parameter.
Access CVSS CVE-2010-5038
Attack Complexity | Attack Vector | Privileges Required | Scope | User Interaction |
---|---|---|---|---|
LOW | NETWORK | NONE | - | - |
Impact CVSS CVE-2010-5038
Confidentiality | Integrity | Availability |
---|---|---|
PARTIAL | PARTIAL | PARTIAL |
Details CVE-2010-5038
EPSS | 0.01210 |
---|---|
EPSS % | 0.85637 |
References | |
CWE | CWE-94 |
CAPEC |
|
Vulnerable Configurations |
|