mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
142 lines
5.0 KiB
JSON
142 lines
5.0 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2008-5619",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "html2text.php in Chuggnutt HTML to Text Converter, as used in PHPMailer before 5.2.10, RoundCube Webmail (roundcubemail) 0.2-1.alpha and 0.2-3.beta, Mahara, and AtMail Open 1.03, allows remote attackers to execute arbitrary code via crafted input that is processed by the preg_replace function with the eval switch."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "http://mahara.org/interaction/forum/topic.php?id=533",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://mahara.org/interaction/forum/topic.php?id=533"
|
|
},
|
|
{
|
|
"name": "7549",
|
|
"refsource": "EXPLOIT-DB",
|
|
"url": "https://www.exploit-db.com/exploits/7549"
|
|
},
|
|
{
|
|
"name": "7553",
|
|
"refsource": "EXPLOIT-DB",
|
|
"url": "https://www.exploit-db.com/exploits/7553"
|
|
},
|
|
{
|
|
"name": "FEDORA-2008-11234",
|
|
"refsource": "FEDORA",
|
|
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00802.html"
|
|
},
|
|
{
|
|
"name": "ADV-2008-3418",
|
|
"refsource": "VUPEN",
|
|
"url": "http://www.vupen.com/english/advisories/2008/3418"
|
|
},
|
|
{
|
|
"name": "https://github.com/PHPMailer/PHPMailer/commit/8beacc646acb67c995aea10ac5585970efc7355a",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://github.com/PHPMailer/PHPMailer/commit/8beacc646acb67c995aea10ac5585970efc7355a"
|
|
},
|
|
{
|
|
"name": "http://trac.roundcube.net/changeset/2148",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://trac.roundcube.net/changeset/2148"
|
|
},
|
|
{
|
|
"name": "53893",
|
|
"refsource": "OSVDB",
|
|
"url": "http://osvdb.org/53893"
|
|
},
|
|
{
|
|
"name": "http://sourceforge.net/forum/forum.php?forum_id=898542",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://sourceforge.net/forum/forum.php?forum_id=898542"
|
|
},
|
|
{
|
|
"name": "34789",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/34789"
|
|
},
|
|
{
|
|
"name": "ADV-2008-3419",
|
|
"refsource": "VUPEN",
|
|
"url": "http://www.vupen.com/english/advisories/2008/3419"
|
|
},
|
|
{
|
|
"name": "http://trac.roundcube.net/ticket/1485618",
|
|
"refsource": "MISC",
|
|
"url": "http://trac.roundcube.net/ticket/1485618"
|
|
},
|
|
{
|
|
"name": "FEDORA-2008-11220",
|
|
"refsource": "FEDORA",
|
|
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00783.html"
|
|
},
|
|
{
|
|
"name": "[oss-security] 20081212 CVE Request - roundcubemail",
|
|
"refsource": "MLIST",
|
|
"url": "http://www.openwall.com/lists/oss-security/2008/12/12/1"
|
|
},
|
|
{
|
|
"name": "33170",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/33170"
|
|
},
|
|
{
|
|
"name": "33145",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/33145"
|
|
},
|
|
{
|
|
"name": "20081222 POC for CVE-2008-5619 (roundcubemail PHP arbitrary code injection)",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/499489/100/0/threaded"
|
|
}
|
|
]
|
|
}
|
|
} |