cbcvebase.
CVE-2008-0167
published 2008-05-18

CVE-2008-0167: The write_array_file function in utils/include.pl in GForge 4.5.14 updates configuration files by truncating them to zero length and then writing new data…

PriorityP421medium4.6CVSS 2.0
AVLACLAuNCPIPAP
EXPLOIT
EPSS
0.73%
49.6th percentile
The write_array_file function in utils/include.pl in GForge 4.5.14 updates configuration files by truncating them to zero length and then writing new data, which might allow attackers to bypass intended access restrictions or have unspecified other impact in opportunistic circumstances.

Affected

1 ranges
VendorProductVersion rangeFixed in
gforgegforge
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.