Lucene search
MitreCVE-2009-3507HistoryOct 01, 2009 - 2:30 p.m.
CVE-2009-3507
2009-10-0114:30:01
CWE-22
mitre
web.nvd.nist.gov
27
cve-2009-3507
directory traversal
modules.php
cmsphp 0.21
remote attack
local file inclusion
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
High
EPSS
0.005
Percentile
77.0%
Directory traversal vulnerability in modules.php in CMSphp 0.21 allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the mod_file parameter.
Affected configurations
Node
jean-michel_wyttenbachcmsphpMatch0.21
| Vendor | Product | Version | CPE |
|---|---|---|---|
| jean-michel_wyttenbach | cmsphp | 0.21 | cpe:2.3:a:jean-michel_wyttenbach:cmsphp:0.21:*:*:*:*:*:*:* |
Related
prion
prion
Directory traversal
2009-10-01 14:30:00
cvelist
cvelist
CVE-2009-3507
2009-10-01 14:00:00
nvd
nvd
CVE-2009-3507
2009-10-01 14:30:01
exploitdb
exploitdb
cmsphp 0.21 - Local File Inclusion / Cross-Site Scripting
2009-07-30 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
High
EPSS
0.005
Percentile
77.0%
Related for CVE-2009-3507