CVE-2010-4282

NUCLEI

Artica Pandora Fms < 3.1 - Path Traversal

Title source: rule

Description

Multiple directory traversal vulnerabilities in Pandora FMS before 3.1.1 allow remote attackers to include and execute arbitrary local files via (1) the page parameter to ajax.php or (2) the id parameter to general/pandora_help.php, and allow remote attackers to include and execute, create, modify, or delete arbitrary local files via (3) the layout parameter to operation/agentes/networkmap.php.

Exploits (1)

exploitdb WRITEUP

by Juan Galiana Lara · textwebappsphp

https://www.exploit-db.com/exploits/15643

View Code ZIP pw:eip

Nuclei Templates (1)

phpShowtime 2.0 - Directory Traversal

HIGHby daffainfo

Shodan: http.title:"pandora fms"

FOFA: title="pandora fms"

References (9)

[Mailing List] http://seclists.org/fulldisclosure/2010/Nov/326

[Patch] http://sourceforge.net/projects/pandora/files/Pandora%20FMS%203.1/Final%20version%20%28Stable%29/pandorafms_console-3.1_security_patch_13Oct2010.tar.gz/download

[Exploit] http://www.exploit-db.com/exploits/15643

[Patch] http://www.securityfocus.com/bid/45112

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/514939/100/0/threaded

[Third Party Advisory, VDB Entry] http://osvdb.org/69543

[Third Party Advisory, VDB Entry] http://osvdb.org/69544

[Third Party Advisory, VDB Entry] http://osvdb.org/69545

[Third Party Advisory] http://secunia.com/advisories/42347

Scores

EPSS 0.0488

EPSS Percentile 89.6%

Details

CWE

CWE-22

Status published

Products (9)

artica/pandora_fms 1.2

artica/pandora_fms 1.3 (5 CPE variants)

artica/pandora_fms 1.3.1

artica/pandora_fms 2.0 (2 CPE variants)

artica/pandora_fms 2.1

artica/pandora_fms 2.1.1

artica/pandora_fms 3.0 (3 CPE variants)

artica/pandora_fms 3.1 rc1

artica/pandora_fms < 3.1

Published Dec 02, 2010

Tracked Since Feb 18, 2026