Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2003-1251

EPSS 4.13% · P89
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2003-1251

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The (1) menu.inc.php, (2) datasets.php and (3) mass_operations.inc.php (mistakenly referred to as mass_opeations.inc.php) scripts in N/X 2002 allow remote attackers to execute arbitrary PHP code via a c_path that references a URL on a remote web server that contains the code.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
N/X Web内容管理系统远程文件包含漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
N/X Web Content Management System是一款方便建立和维护站点的系统。 N/X Web CMS多个脚本对用户提交的参数数据缺少正确过滤,远程攻击者可以利用这个漏洞提恶意WEB请求而以WEB权限在系统上执行任意命令。 CMS包含的'nx/common/cds/menu.inc.php'和'nx/common/dbo/datasets.php'脚本对用户提交的'c_path'参数缺少正确检查,攻击者可以在自己控制的服务器上提供恶意文件,并提交指向恶意文件的路径作为'c_path'参
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2003-1251

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2003-1251

登录查看更多情报信息。

Same Patch Batch · n/a · 2005-11-16 · 191 CVEs total

CVE-2002-2156Trillian缓冲区溢出漏洞
CVE-2002-2143MySimpleNews远程管理员密码可读漏洞
CVE-2002-2144BearShare目录遍历漏洞
CVE-2002-2145Savant Webserver远程受保护文件泄露漏洞
CVE-2002-2146Savant Webserver cgitest.exe远程拒绝服务攻击漏洞
CVE-2002-2148Lucent路由器UDP端口9信息泄漏漏洞
CVE-2002-2149Lucent Access Point IP 服务路由器超长HTTP请求服务拒绝漏洞
CVE-2002-2150多家厂商防火墙包淹没导致状态表填满漏洞
CVE-2002-2152Software602 Web602 Web服务器未授权管理目录访问漏洞
CVE-2002-2153Oracle Application Server PL/SQL远程格式化串溢出漏洞
CVE-2002-2154Monkey HTTP Daemon 路径遍历漏洞
CVE-2002-2155Trillian IRC模块格式字符串漏洞
CVE-2002-2164所谓的Outlook Express连接服务拒绝漏洞
CVE-2002-2169AOL Instant Messenger未授权行为漏洞
CVE-2002-2168Thorsten Korner 123tkShop SQL注入漏洞
CVE-2002-2167Thorsten Korner 123tkShop任意文件包含漏洞
CVE-2002-2166e-Zone FuseTalk搜索结果跨站脚本漏洞
CVE-2002-2165IMHO Webmail Account Hijacking漏洞
CVE-2002-2161Kerio Personal Firewall多个SYN数据包服务拒绝漏洞
CVE-2002-2158ZenTrack Ticket.PHP信息泄露漏洞

Showing top 20 of 191 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2003-1251

No comments yet

Leave a comment