CVE-2008-4358

EUVD-2008-4339
Unspecified vulnerability in class/theme.class.php in SPAW Editor PHP Edition before 2.0.8.1 has unknown impact and attack vectors, probably related to directory traversal sequences in the theme name.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 74%
Affected Products (NVD)
VendorProductVersion
spaw_editorspaw_php
𝑥
≤ 2.0.8
spaw_editorspaw_php
1.0
spaw_editorspaw_php
1.0:rc1
spaw_editorspaw_php
1.0:rc2
spaw_editorspaw_php
1.0.1
spaw_editorspaw_php
1.0.2
spaw_editorspaw_php
1.0.3
spaw_editorspaw_php
1.0.4
spaw_editorspaw_php
1.0.5
spaw_editorspaw_php
1.0.5a:a
spaw_editorspaw_php
1.0.6
spaw_editorspaw_php
1.0.7
spaw_editorspaw_php
1.1
spaw_editorspaw_php
1.1:beta
spaw_editorspaw_php
1.1:rc1
spaw_editorspaw_php
1.2
spaw_editorspaw_php
1.2:beta
spaw_editorspaw_php
1.2:beta_2
spaw_editorspaw_php
1.2.1
spaw_editorspaw_php
1.2.2
spaw_editorspaw_php
1.2.3
spaw_editorspaw_php
2.0.0
spaw_editorspaw_php
2.0.0:beta
spaw_editorspaw_php
2.0.0:rc
spaw_editorspaw_php
2.0.1
spaw_editorspaw_php
2.0.2
spaw_editorspaw_php
2.0.3
spaw_editorspaw_php
2.0.4
spaw_editorspaw_php
2.0.4.1
spaw_editorspaw_php
2.0.5:beta
spaw_editorspaw_php
2.0.6
spaw_editorspaw_php
2.0.7
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://blog.solmetra.com/2008/09/10/spaw-editor-php-edition-hotfix-release/
http://secunia.com/advisories/31796
http://sourceforge.net/project/shownotes.php?release_id=625333&group_id=77954
http://spaw.svn.sourceforge.net/viewvc/spaw/spaw2/trunk/class/theme.class.php?r1=151&r2=359
http://www.securityfocus.com/bid/31185
https://exchange.xforce.ibmcloud.com/vulnerabilities/45104
http://blog.solmetra.com/2008/09/10/spaw-editor-php-edition-hotfix-release/
http://secunia.com/advisories/31796
http://sourceforge.net/project/shownotes.php?release_id=625333&group_id=77954
http://spaw.svn.sourceforge.net/viewvc/spaw/spaw2/trunk/class/theme.class.php?r1=151&r2=359
http://www.securityfocus.com/bid/31185
https://exchange.xforce.ibmcloud.com/vulnerabilities/45104