Lucene search
HistoryApr 17, 2009 - 2:08 p.m.
CVE-2009-1318
cve
2009
1318
directory traversal
jamroom
nvd
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
7.1 High
AI Score
Confidence
Low
0.014 Low
EPSS
Percentile
86.2%
Directory traversal vulnerability in index.php in Jamroom 3.1.2, 3.2.3 through 3.2.6, 4.0.2, and possibly other versions before 3.4.0 allows remote attackers to include arbitrary files via directory traversal sequences in the t parameter.
Affected configurations
Node
jamroomjamroom
ORjamroomjamroomMatch1.0
ORjamroomjamroomMatch1.0b1
ORjamroomjamroomMatch1.0b2
ORjamroomjamroomMatch1.0b3
ORjamroomjamroomMatch1.0b4
ORjamroomjamroomMatch1.0b5
ORjamroomjamroomMatch2.0.9
ORjamroomjamroomMatch2.0.9a
ORjamroomjamroomMatch2.6.10
ORjamroomjamroomMatch2.6.11
ORjamroomjamroomMatch2.6.12
ORjamroomjamroomMatch2.60
ORjamroomjamroomMatch2.60rc2
ORjamroomjamroomMatch2.60rc3
ORjamroomjamroomMatch2.61
ORjamroomjamroomMatch2.62
ORjamroomjamroomMatch2.63
ORjamroomjamroomMatch2.64
ORjamroomjamroomMatch2.65
ORjamroomjamroomMatch2.66
ORjamroomjamroomMatch2.67
ORjamroomjamroomMatch2.68
ORjamroomjamroomMatch2.69
ORjamroomjamroomMatch3.0
ORjamroomjamroomMatch3.0b1
ORjamroomjamroomMatch3.0b2
ORjamroomjamroomMatch3.0b3
ORjamroomjamroomMatch3.0b4
ORjamroomjamroomMatch3.0b5
ORjamroomjamroomMatch3.0b6
ORjamroomjamroomMatch3.0b7
ORjamroomjamroomMatch3.0b8
ORjamroomjamroomMatch3.0.1
ORjamroomjamroomMatch3.0.2
ORjamroomjamroomMatch3.0.3
ORjamroomjamroomMatch3.0.4
ORjamroomjamroomMatch3.0.5
ORjamroomjamroomMatch3.0.6
ORjamroomjamroomMatch3.0.7
ORjamroomjamroomMatch3.0.8
ORjamroomjamroomMatch3.0.9
ORjamroomjamroomMatch3.0.10
ORjamroomjamroomMatch3.0.11
ORjamroomjamroomMatch3.0.12
ORjamroomjamroomMatch3.0.13
ORjamroomjamroomMatch3.0.14
ORjamroomjamroomMatch3.0.15
ORjamroomjamroomMatch3.0.16
ORjamroomjamroomMatch3.0.17
ORjamroomjamroomMatch3.0.18
ORjamroomjamroomMatch3.0.19
ORjamroomjamroomMatch3.0.20
ORjamroomjamroomMatch3.0.21
ORjamroomjamroomMatch3.0.22
ORjamroomjamroomMatch3.0.23
ORjamroomjamroomMatch3.0.24
ORjamroomjamroomMatch3.0.25
ORjamroomjamroomMatch3.0.26
ORjamroomjamroomMatch3.0.27
ORjamroomjamroomMatch3.0.28
ORjamroomjamroomMatch3.0.29
ORjamroomjamroomMatch3.0.30
ORjamroomjamroomMatch3.1.0
ORjamroomjamroomMatch3.1.0b1
ORjamroomjamroomMatch3.1.0b2
ORjamroomjamroomMatch3.1.0b3
ORjamroomjamroomMatch3.1.1
ORjamroomjamroomMatch3.1.2
ORjamroomjamroomMatch3.1.3
ORjamroomjamroomMatch3.1.4
ORjamroomjamroomMatch3.1.5
ORjamroomjamroomMatch3.2.0
ORjamroomjamroomMatch3.2.1
ORjamroomjamroomMatch3.2.2
ORjamroomjamroomMatch3.2.3
ORjamroomjamroomMatch3.2.4
ORjamroomjamroomMatch3.2.5
ORjamroomjamroomMatch3.2.6
ORjamroomjamroomMatch3.3.0
ORjamroomjamroomMatch3.3.1
ORjamroomjamroomMatch3.3.2
ORjamroomjamroomMatch3.3.3
ORjamroomjamroomMatch3.3.4
ORjamroomjamroomMatch3.3.5
ORjamroomjamroomMatch3.3.6
ORjamroomjamroomMatch3.3.7
ORjamroomjamroomMatch3.3.8
ORjamroomjamroomMatch4.0.2
Related
prion
prion
Directory traversal
2009-04-17 14:08:00
cvelist
cvelist
CVE-2009-1318
2009-04-17 10:00:00
nvd
nvd
CVE-2009-1318
2009-04-17 14:08:52
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
7.1 High
AI Score
Confidence
Low
0.014 Low
EPSS
Percentile
86.2%
Related for CVE-2009-1318