CVE-2009-4140

2009-12-2222:30:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.2

Confidence

Low

EPSS

0.973

Percentile

99.9%

JSON

Unrestricted file upload vulnerability in ofc_upload_image.php in Open Flash Chart v2 Beta 1 through v2 Lug Wyrm Charmer, as used in Piwik 0.2.35 through 0.4.3, Woopra Analytics Plugin before 1.4.3.2, and possibly other products, when register_globals is enabled, allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension through the name parameter with the code in the HTTP_RAW_POST_DATA parameter, then accessing it via a direct request to the file in tmp-upload-images/.

Affected configurations

Nvd

Node

teethgrinder.co.ukopen_flash_chartMatch2.0beta_1

teethgrinder.co.ukopen_flash_chartMatch2.0gamera

teethgrinder.co.ukopen_flash_chartMatch2.0hyperion

teethgrinder.co.ukopen_flash_chartMatch2.0ichor

teethgrinder.co.ukopen_flash_chartMatch2.0j_rmungandr

teethgrinder.co.ukopen_flash_chartMatch2.0j_rmungandr-2

teethgrinder.co.ukopen_flash_chartMatch2.0kvasir

teethgrinder.co.ukopen_flash_chartMatch2.0lug_wyrm_charmer

AND

matomomatomoMatch0.2.37

matomomatomoMatch0.4.2

matomomatomoMatch0.4.3

VendorProductVersionCPE
teethgrinder.co.ukopen_flash_chart2.0cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:beta_1:*:*:*:*:*:*
teethgrinder.co.ukopen_flash_chart2.0cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:gamera:*:*:*:*:*:*
teethgrinder.co.ukopen_flash_chart2.0cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:hyperion:*:*:*:*:*:*
teethgrinder.co.ukopen_flash_chart2.0cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:ichor:*:*:*:*:*:*
teethgrinder.co.ukopen_flash_chart2.0cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:j_rmungandr:*:*:*:*:*:*
teethgrinder.co.ukopen_flash_chart2.0cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:j_rmungandr-2:*:*:*:*:*:*
teethgrinder.co.ukopen_flash_chart2.0cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:kvasir:*:*:*:*:*:*
teethgrinder.co.ukopen_flash_chart2.0cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:lug_wyrm_charmer:*:*:*:*:*:*
matomomatomo0.2.37cpe:2.3:a:matomo:matomo:0.2.37:*:*:*:*:*:*:*
matomomatomo0.4.2cpe:2.3:a:matomo:matomo:0.4.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
teethgrinder.co.uk	open_flash_chart	2.0	cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:beta_1::::::
teethgrinder.co.uk	open_flash_chart	2.0	cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:gamera::::::
teethgrinder.co.uk	open_flash_chart	2.0	cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:hyperion::::::
teethgrinder.co.uk	open_flash_chart	2.0	cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:ichor::::::
teethgrinder.co.uk	open_flash_chart	2.0	cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:j_rmungandr::::::
teethgrinder.co.uk	open_flash_chart	2.0	cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:j_rmungandr-2::::::
teethgrinder.co.uk	open_flash_chart	2.0	cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:kvasir::::::
teethgrinder.co.uk	open_flash_chart	2.0	cpe:2.3:a:teethgrinder.co.uk:open_flash_chart:2.0:lug_wyrm_charmer::::::
matomo	matomo	0.2.37	cpe:2.3:a:matomo:matomo:0.2.37:::::::*
matomo	matomo	0.4.2	cpe:2.3:a:matomo:matomo:0.4.2:::::::*