VYPR
← All advisories
Unrated severityNVD Advisory· Published Jan 6, 2009· Updated Apr 23, 2026

CVE-2008-5857

CVE-2008-5857

Description

The DropDocuments plugin in KnowledgeTree before 3.5.4a allows remote authenticated users to gain administrative privileges via a certain sequence of "browse documents" and dashboard requests.

Affected products

32
  • Knowledgetree/Knowledgetree Document Management31 versions
    cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:*:*:*:*:*:*:*:*+ 30 more
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:*:*:*:*:*:*:*:*range: <=3.5.4
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.0.3a:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.0.3b:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.1a:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.1b:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3.2:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3.3:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3.4:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3.5:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3.6:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.3.7:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4.3:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4.4:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4.5:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4.6:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.4a:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.5.2a:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.5.2b:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.5.2c:*:*:*:*:*:*:*
    • cpe:2.3:a:knowledgetree_document_management:knowledgetree_document_management:3.5.3:*:*:*:*:*:*:*
  • Knowledgetree/Knowledgetreellm-fuzzy
    Range: <3.5.4a

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

News mentions

0

No linked articles in our index yet.