Lucene search
MitreCVE-2009-0570HistoryFeb 13, 2009 - 5:30 p.m.
CVE-2009-0570
2009-02-1317:30:00
CWE-22
mitre
web.nvd.nist.gov
23
cve
2009
0570
directory traversal
vulnerability
ninja designs mailist 3.0
register globals
magic quotes gpc
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.003
Percentile
69.7%
Directory traversal vulnerability in send.php in Ninja Designs Mailist 3.0, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the load parameter. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
ninjadesignsmailistMatch3.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ninjadesigns | mailist | 3.0 | cpe:2.3:a:ninjadesigns:mailist:3.0:*:*:*:*:*:*:* |
Related
prion
prion
Directory traversal
2009-02-13 17:30:00
nvd
nvd
CVE-2009-0570
2009-02-13 17:30:00
cvelist
cvelist
CVE-2009-0570
2009-02-13 17:00:00
exploitdb
exploitdb
Mailist 3.0 - Insecure Backup / Local File Inclusion
2009-02-06 00:00:00
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.003
Percentile
69.7%
Related for CVE-2009-0570