Lucene search
MitreCVE-2009-4672HistoryMar 05, 2010 - 6:30 p.m.
CVE-2009-4672
2010-03-0518:30:00
CWE-22
mitre
web.nvd.nist.gov
32
vulnerability
directory traversal
wp-lytebox plugin
wordpress
cve-2009-4672
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.009
Percentile
83.1%
Directory traversal vulnerability in main.php in the WP-Lytebox plugin 1.3 for WordPress allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the pg parameter.
Affected configurations
Node
grupenetwp-lyteboxMatch1.3
wordpresswordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| grupenet | wp-lytebox | 1.3 | cpe:2.3:a:grupenet:wp-lytebox:1.3:*:*:*:*:*:*:* |
| wordpress | wordpress | * | cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2009-4672
2010-03-05 18:30:00
wpvulndb
wpvulndb
Lytebox - Local File Inclusion
2014-08-01 00:00:00
patchstack
patchstack
WordPress Lytebox Plugin 1.3 - Local File Inclusion
2009-05-26 00:00:00
prion
prion
Directory traversal
2010-03-05 18:30:00
cvelist
cvelist
CVE-2009-4672
2010-03-05 18:00:00
exploitdb
exploitdb
WordPress Plugin Lytebox - 'wp-lytebox' Local File Inclusion
2009-05-26 00:00:00
nessus
nessus
WP-Lytebox 'pg' Parameter Local File Inclusion
2009-05-27 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.009
Percentile
83.1%
Related for CVE-2009-4672