Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2009-0729
HistoryFeb 24, 2009 - 11:30 p.m.

CVE-2009-0729

2009-02-2423:30:03
CWE-22
mitre
web.nvd.nist.gov
28
directory traversal
vulnerability
page engine cms 2.0
remote attackers
arbitrary local files
nvd

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.011

Percentile

84.1%

JSON

Multiple directory traversal vulnerabilities in Page Engine CMS 2.0 Basic and Pro allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the fPrefix parameter to (1) modules/recent_poll_include.php, (2) modules/login_include.php, and (3) modules/statistics_include.php and (4) configuration.inc.php in includes/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

Nvd
Node
lingxpage_engine_cmsMatch2.0-basic
OR
lingxpage_engine_cmsMatch2.0-pro
VendorProductVersionCPE
lingxpage_engine_cms2.0cpe:2.3:a:lingx:page_engine_cms:2.0:-:basic:*:*:*:*:*
lingxpage_engine_cms2.0cpe:2.3:a:lingx:page_engine_cms:2.0:-:pro:*:*:*:*:*

Related

cvelist 1
prion 1
nvd 1
cvelist
cvelist
CVE-2009-0729
2009-02-24 23:00:00
prion
prion
Directory traversal
2009-02-24 23:30:00
nvd
nvd
CVE-2009-0729
2009-02-24 23:30:03

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.011

Percentile

84.1%

JSON
Related for CVE-2009-0729
cvelist1prion1nvd1