CVE-2008-4668

EPSS 0.05% · P15 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-4668

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Directory traversal vulnerability in the Image Browser (com_imagebrowser) 0.1.5 component for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the folder parameter to index.php.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Joomla Image Browser "index.php" 路径遍历漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Joomla!的图像浏览器(com_imagebrowser)组件中存在目录遍历漏洞，远程攻击者可以借助index.php的folder参数中的".."包含和运行任意的本地文件。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2008-4668

#	POC Description	Source Link	Shenlong Link
1	Joomla! Image Browser 0.1.5 rc2 is susceptible to local file inclusion via com_imagebrowser which could allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the folder parameter to index.php.	https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2008/CVE-2008-4668.yaml	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2008-4668

请登录查看更多情报信息。

http://securityreason.com/securityalert/4464third-party-advisoryx_refsource_SREASON
https://www.exploit-db.com/exploits/6618exploitx_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/31458vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/45490vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2008-4668

Same Patch Batch · n/a · 2008-10-22 · 34 CVEs total

CVE-2008-4670		Recipe Script 'search.php' 跨站脚本攻击和注入漏洞
CVE-2008-4690		Lynx URI处理器任意命令执行漏洞
CVE-2008-4691		IBM DB2 安全漏洞
CVE-2008-4692		ibm db2 安全漏洞
CVE-2008-4693		ibm db2 信息泄露漏洞
CVE-2008-4665		datingpro matchmaking 'news_read.php'和gifts_show.php SQL注入漏洞
CVE-2008-4666		Ultimate Webboard 'webboard.php' SQL注入漏洞
CVE-2008-4667		arabcms 'rss.php' 路径遍历漏洞
CVE-2008-4669		Recipe Script 'search.php' 跨站脚本攻击和注入漏洞
CVE-2008-4689		mantis重置cookie会话劫持漏洞
CVE-2008-4671		wordpress wordpress_mu 'wp-admin/wp-blogs.php' 跨站脚本攻击漏洞
CVE-2008-4672		Lyrics Script 'search_results.php' 跨站脚本攻击漏洞
CVE-2008-4673		webbiscuits events_calendar 'header_setup.php' 代码注入漏洞
CVE-2008-4674		Conkurent Real Estate Manager 'cat_id' 参数 SQL注入漏洞
CVE-2008-4675		phpcounter 'index.php' SQL注入漏洞
CVE-2008-4676		citrix access_essentials 权限许可和访问控制漏洞
CVE-2008-4664		qvod qvod_player QvodInsert.QvodCtr ActiveX控件缓冲区溢出漏洞
CVE-2008-4699		Peachtree Accounting PAWWeb11.ocx ActiveX控件不安全方式调用漏洞
CVE-2008-4688		Mantis 'string_api.php' 发行数量信息泄露漏洞
CVE-2008-4687		Mantis 'manage_proj_page.php' PHP代码注入漏洞

Showing top 20 of 34 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2008-4668

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2008-4668

I. Basic Information for CVE-2008-4668

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2008-4668

III. Intelligence Information for CVE-2008-4668

Same Patch Batch · n/a · 2008-10-22 · 34 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2008-4668

Leave a comment