← back
CVE-2008-2689

CVE-2008-2689

35Vexday Risk Score

No sign of exploitation. It has a public proof of concept.

ssvc Attendepss 46%
exploitation probability
46%top 1% of all CVEs
observed exploitation
nono source reports it
1 public exploit(s)
PHP remote file inclusion vulnerability in pub/clients.php in BrowserCRM 5.002.00 allows remote attackers to execute arbitrary PHP code via a URL in the bcrm_pub_root parameter.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.