CVE-2009-3306

2009-09-2310:00:00

mitre

www.cve.org

AI Score

7.3

Confidence

Low

EPSS

0.043

Percentile

92.3%

JSON

PHP remote file inclusion vulnerability in include/header.php in ClearSite 4.50 allows remote attackers to execute arbitrary PHP code via a URL in the cs_base_path parameter.

References

www.exploit-db.com/exploits/9716

www.securityfocus.com/archive/1/511507/100/0/threaded

www.securityfocus.com/bid/40457

www.vupen.com/english/advisories/2009/2702