Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2008-5619

EPSS 77.69% · P99
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-5619

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
html2text.php in Chuggnutt HTML to Text Converter, as used in PHPMailer before 5.2.10, RoundCube Webmail (roundcubemail) 0.2-1.alpha and 0.2-3.beta, Mahara, and AtMail Open 1.03, allows remote attackers to execute arbitrary code via crafted input that is processed by the preg_replace function with the eval switch.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
chuggnutt.com HTML to Plain Text Conversion 远程代码执行漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Chuggnutt HTML to Text Converter 是一款html与text的转换工具。 Chuggnutt HTML至Text Converter的html2text.php,当在RoundCube Webmail (roundcubemail) 0.2-1.alpha 和0.2-3.beta, Mahara,一级AtMail Open 1.03版本中运行时,允许远程攻击者借助特制的由具有eval开关的preg_replace函数处理的输入,执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2008-5619

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2008-5619

登录查看更多情报信息。

Same Patch Batch · n/a · 2008-12-17 · 72 CVEs total

CVE-2008-5650AlstraSoft Web Host Directory 'Password' Parameter SQL注入漏洞
CVE-2008-5508Mozilla Firefox URL 控制字符解析漏洞
CVE-2008-5506Mozilla Firefox 302重定向 响应泄露漏洞
CVE-2008-5657Quassel Core CTCP Ping 输入注入漏洞
CVE-2008-5656TYPO3 frontend插件跨站脚本攻击漏洞
CVE-2008-5655MyioSoft EasyBookMarker 'bookmarker_backend.php' SQL注入漏洞
CVE-2008-5654MyioSoft EasyCalendar 'ajaxp.php' SQL注入攻击漏洞
CVE-2008-5653MyioSoft AjaxPortal 跨站脚本漏洞
CVE-2008-5652MyioSoft EasyBookMarker 'ajaxp.php' SQL注入攻击漏洞
CVE-2008-5651MyioSoft EasyBookMarker 'bookmarker_backend.php' SQL注入漏洞
CVE-2008-5658PHP ZipArchive::extractTo()函数.zip文件目录遍历漏洞
CVE-2008-5649AlstraSoft Article Manager Pro 'admin/admin.php' SQL注入漏洞
CVE-2008-5648DeltaScripts PHP Shop 'admin/login.php' 多个SQL注入漏洞
CVE-2008-5647Trac sanitizer过滤器钓鱼攻击漏洞
CVE-2008-5646Trac wiki标示字体拒绝服务攻击漏洞
CVE-2008-5645Orb Networks Orb 未明 目录遍历漏洞
CVE-2008-5644TYPO3 File backend 模板跨站攻击漏洞
CVE-2008-5643Joomla! and Mambo Books Component 'book_id' Parameter SQL注入漏洞
CVE-2008-5642CMS Made Simple 'cms_language' Cookie Parameter 目录遍历漏洞
CVE-2008-5641Active Photo Gallery 'account.asp'SQL注入攻击漏洞

Showing top 20 of 72 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2008-5619

No comments yet

Leave a comment