Lucene search
MitreCVE-2009-1450HistoryApr 28, 2009 - 3:30 p.m.
CVE-2009-1450
2009-04-2815:30:00
CWE-94
mitre
web.nvd.nist.gov
24
cve-2009-1450
php
remote file inclusion
format.php
sma-db 0.3.12
security vulnerability
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.7
Confidence
Low
EPSS
0.005
Percentile
76.5%
PHP remote file inclusion vulnerability in format.php in SMA-DB 0.3.12 allows remote attackers to execute arbitrary PHP code via a URL in the _page_content parameter.
Affected configurations
Node
bluevirus-designsma-dbMatch0.3.12
| Vendor | Product | Version | CPE |
|---|---|---|---|
| bluevirus-design | sma-db | 0.3.12 | cpe:2.3:a:bluevirus-design:sma-db:0.3.12:*:*:*:*:*:*:* |
References
Related
cvelist
cvelist
CVE-2009-1450
2009-04-28 15:00:00
CVE-2009-1452
2009-04-28 16:00:00
prion
prion
Remote file inclusion
2009-04-28 15:30:00
Remote file inclusion
2009-04-28 16:30:00
nvd
nvd
CVE-2009-1450
2009-04-28 15:30:00
CVE-2009-1452
2009-04-28 16:30:03
exploitdb
exploitdb
sma-db 0.3.12 - Remote File Inclusion / Cross-Site Scripting
2009-02-02 00:00:00
cve
cve
CVE-2009-1452
2009-04-28 16:30:03
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.7
Confidence
Low
EPSS
0.005
Percentile
76.5%
Related for CVE-2009-1450