CVE-2008-2081
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2008-2081
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Directory traversal vulnerability in index.php in Siteman 2.0.x2 allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the module parameter.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Siteman Siteman 'module' Parameter 'index.php' 跨站脚本和本地文件包含漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Siteman 2.0.x2版本存在目录遍历漏洞。远程认证管理员可以借助module参数中的".."(参数中包含'..'),放入和运行任意的本地文件。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2008-2081
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2008-2081
Please Login to view more intelligence information
Same Patch Batch · n/a · 2008-05-05 · 15 CVEs total
| CVE-2008-0599 | PHP 5.2.6 'cgi_main.c' URI 安全漏洞 | |
| CVE-2008-2050 | PHP 缓冲区错误漏洞 | |
| CVE-2008-2051 | PHP 5.2.6 incomplete multibyte chars 安全漏洞 | |
| CVE-2008-2082 | Siteman Siteman 'module' Parameter 'index.php' 跨站脚本攻击漏洞 | |
| CVE-2008-2083 | Prozilla Hosting Index 'directory.php' SQL注入漏洞 | |
| CVE-2008-2084 | RunCMS MyArticles module 'topic_id' Parameter 'topics.php' SQL注入漏洞 | |
| CVE-2008-2072 | Virtual Design Studio vlbook 'index.php'跨站脚本攻击和本地文件包含漏洞 | |
| CVE-2008-2073 | Virtual Design Studio vlbook 'include/global.inc.php'目录遍历漏洞 | |
| CVE-2008-2074 | Harris Wap Chat 'sysFileDir' Parameter 多个远程文件包含漏洞 | |
| CVE-2008-2075 | AstroCam AstroCam 'pic.php'跨站脚本攻击漏洞 | |
| CVE-2008-2076 | ActualScripts ActualAnalyzer Lite 'admin.php'本地文件包含漏洞 | |
| CVE-2008-2077 | Plain Black WebGUI Data Form未明安全漏洞 | |
| CVE-2008-2078 | Robocode AWT Event Queue 安全绕过漏洞 | |
| CVE-2008-2079 | Oracle MySQL 权限许可和访问控制问题漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8251
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo - CVE-2026-8250
Open5GS SMF n4-build.c smf_n4_build_qos_flow_to_modify_list - CVE-2026-8249
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo - CVE-2026-8248
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo - CVE-2026-8226
Open5GS types.c ogs_pcc_rule_install_flow_from_media denial
V. Comments for CVE-2008-2081
No comments yet