{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-29T18:46:52.057","vulnerabilities":[{"cve":{"id":"CVE-2008-5989","sourceIdentifier":"cve@mitre.org","published":"2009-01-28T15:30:00.280","lastModified":"2026-06-16T23:01:22.013","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Directory traversal vulnerability in defs.php in PHPcounter 1.3.2 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the l parameter."},{"lang":"es","value":"Vulnerabilidad de salto de directorio en defs.php de PHPcounter v1.3.2 y anteriores, cuando está deshabilitado magic_quotes_gpc; permite a atacantes remotos incluir y ejecutar ficheros locales de su elección a través de un .. (punto punto) en el parámetro l."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:phpcounter:phpcounter:*:*:*:*:*:*:*:*","versionEndIncluding":"1.3.2","matchCriteriaId":"9C240815-F205-4A58-A3A3-769B96F7B022"},{"vulnerable":true,"criteria":"cpe:2.3:a:phpcounter:phpcounter:1.2.0:*:*:*:*:*:*:*","matchCriteriaId":"99DEE8B3-97EF-4ED2-B659-296B097314F5"},{"vulnerable":true,"criteria":"cpe:2.3:a:phpcounter:phpcounter:1.2.1:*:*:*:*:*:*:*","matchCriteriaId":"35B01FA5-9AAC-4D05-A522-CCAFE0CF1C17"},{"vulnerable":true,"criteria":"cpe:2.3:a:phpcounter:phpcounter:1.2.2:*:*:*:*:*:*:*","matchCriteriaId":"69F921D4-DCFD-4599-BBD4-07C832B7FF60"},{"vulnerable":true,"criteria":"cpe:2.3:a:phpcounter:phpcounter:1.2.3:*:*:*:*:*:*:*","matchCriteriaId":"FA81D42E-90AF-49BD-AD6D-79AC4233B675"},{"vulnerable":true,"criteria":"cpe:2.3:a:phpcounter:phpcounter:1.2.4:*:*:*:*:*:*:*","matchCriteriaId":"760B7941-500B-461B-B9E3-19ABA3485AD4"},{"vulnerable":true,"criteria":"cpe:2.3:a:phpcounter:phpcounter:1.2.5:*:*:*:*:*:*:*","matchCriteriaId":"FA76DBFB-1DBF-4B4F-98BC-29E01443ECDF"},{"vulnerable":true,"criteria":"cpe:2.3:a:phpcounter:phpcounter:1.2.6:*:*:*:*:*:*:*","matchCriteriaId":"ADF2CABA-A445-4E82-9D37-234D08D0D809"},{"vulnerable":true,"criteria":"cpe:2.3:a:phpcounter:phpcounter:1.2.7:*:*:*:*:*:*:*","matchCriteriaId":"08A62F1D-2B8E-4A72-AD5D-60ED6FE9EB32"},{"vulnerable":true,"criteria":"cpe:2.3:a:phpcounter:phpcounter:1.3.0:*:*:*:*:*:*:*","matchCriteriaId":"2F93A1B0-3048-4F0B-97D9-43B6F69D4CA6"},{"vulnerable":true,"criteria":"cpe:2.3:a:phpcounter:phpcounter:1.3.1:*:*:*:*:*:*:*","matchCriteriaId":"172EF53D-312C-44FE-ADA0-375C90462BEC"}]}]}],"references":[{"url":"http://secunia.com/advisories/31993","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/31373","source":"cve@mitre.org","tags":["Exploit"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/45378","source":"cve@mitre.org"},{"url":"https://www.exploit-db.com/exploits/6553","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/31993","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/31373","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/45378","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.exploit-db.com/exploits/6553","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}