Lucene search
MitreCVE-2009-2160HistoryJun 22, 2009 - 7:30 p.m.
CVE-2009-2160
2009-06-2219:30:00
CWE-264
mitre
web.nvd.nist.gov
26
cve-2009-2160
torrenttrader classic
information disclosure
remote attackers
phpinfo
check.php
nvd
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
7.3
Confidence
High
EPSS
0.01
Percentile
83.4%
TorrentTrader Classic 1.09 allows remote attackers to (1) obtain configuration information via a direct request to phpinfo.php, which calls the phpinfo function; and allows remote attackers to (2) obtain other potentially sensitive information via a direct request to check.php.
Affected configurations
Node
torrenttradertorrenttrader_classicMatch1.09
| Vendor | Product | Version | CPE |
|---|---|---|---|
| torrenttrader | torrenttrader_classic | 1.09 | cpe:2.3:a:torrenttrader:torrenttrader_classic:1.09:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2009-2160
2009-06-22 19:30:00
prion
prion
Information disclosure
2009-06-22 19:30:00
cvelist
cvelist
CVE-2009-2160
2009-06-22 19:00:00
openvas
openvas
TorrentTrader Classic Multiple Vulnerabilities
2009-07-07 00:00:00
exploitdb
exploitdb
TorrentTrader Classic 1.09 - Multiple Vulnerabilities
2009-06-15 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
7.3
Confidence
High
EPSS
0.01
Percentile
83.4%
Related for CVE-2009-2160