ID de Prueba:	1.3.6.1.4.1.25623.1.0.100935
Categoría:	Web application abuses
Título:	Pulse CMS Basic Local File Include Vulnerability
Resumen:	Pulse CMS Basic is prone to a local file-include vulnerability.
Descripción:	Summary: Pulse CMS Basic is prone to a local file-include vulnerability. Vulnerability Impact: An attacker can exploit this issue to include arbitrary local files and execute PHP code on the affected computer in the context of the webserver process. This may facilitate a compromise of the application and the underlying system, other attacks are also possible. Affected Software/OS: Pulse CMS Basic 1.2.8 is vulnerable. Other versions may also be affected. Solution: Reportedly, the issue is fixed in version 1.2.9, but Symantec has not confirmed this. Please contact the vendor for more information. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-4330 BugTraq ID: 45186 http://www.securityfocus.com/bid/45186 Bugtraq: 20101205 'Pulse CMS Basic' Local File Inclusion Vulnerability (CVE-2010-4330) (Google Search) http://www.securityfocus.com/archive/1/515029/100/0/threaded http://www.exploit-db.com/exploits/15691 http://pulsecms.com/release-notes.php http://www.uncompiled.com/2010/12/pulse-cms-basic-local-file-inclusion-vulnerability-cve-2010-4330/ http://osvdb.org/69622 http://secunia.com/advisories/42462 http://www.vupen.com/english/advisories/2010/3128
Copyright	Copyright (C) 2010 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.