VYPR
← All advisories
Unrated severityNVD Advisory· Published Sep 29, 2008· Updated Apr 23, 2026

CVE-2008-4318

CVE-2008-4318

Description

Observer 0.3.2.1 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the query parameter to (1) whois.php or (2) netcmd.php.

Affected products

13
  • Project Observer/Observer13 versions
    cpe:2.3:a:project-observer:observer:*:*:*:*:*:*:*:*+ 12 more
    • cpe:2.3:a:project-observer:observer:*:*:*:*:*:*:*:*range: <=0.3.2.1
    • cpe:2.3:a:project-observer:observer:0.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:project-observer:observer:0.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:project-observer:observer:0.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:project-observer:observer:0.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:project-observer:observer:0.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:project-observer:observer:0.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:project-observer:observer:0.2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:project-observer:observer:0.2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:project-observer:observer:0.2.5:*:*:*:*:*:*:*
    • cpe:2.3:a:project-observer:observer:0.30-pre-1:*:*:*:*:*:*:*
    • cpe:2.3:a:project-observer:observer:0.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:project-observer:observer:0.3.2:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.