Lucene search
MitreCVE-2009-4739HistoryMar 26, 2010 - 8:30 p.m.
CVE-2009-4739
2010-03-2620:30:00
CWE-94
mitre
web.nvd.nist.gov
26
cve-2009-4739
php
remote file inclusion
skadate dating
vulnerability
arbitrary code execution
nvd
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.7
Confidence
Low
EPSS
0.008
Percentile
81.4%
PHP remote file inclusion vulnerability in index.php in SkaDate Dating allows remote attackers to execute arbitrary PHP code via a URL in the language_id parameter. NOTE: this can also be leveraged to include and execute arbitrary local files via directory traversal sequences.
Affected configurations
Node
skadateskadate_online_dating_software
| Vendor | Product | Version | CPE |
|---|---|---|---|
| skadate | skadate_online_dating_software | * | cpe:2.3:a:skadate:skadate_online_dating_software:*:*:*:*:*:*:*:* |
Related
prion
prion
Directory traversal
2010-03-26 20:30:00
nvd
nvd
CVE-2009-4739
2010-03-26 20:30:00
cvelist
cvelist
CVE-2009-4739
2010-03-26 20:00:00
exploitdb
exploitdb
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.7
Confidence
Low
EPSS
0.008
Percentile
81.4%
Related for CVE-2009-4739