Lucene search

[email protected]CVE-2009-1025

HistoryMar 20, 2009 - 12:30 a.m.

CVE-2009-1025

2009-03-2000:30:00

CWE-94

[email protected]

web.nvd.nist.gov

php

remote file inclusion

vulnerability

linkadmin.php

beerwin phplinkadmin 1.0

execute arbitrary code

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.8 High

AI Score

Confidence

Low

0.027 Low

EPSS

Percentile

90.6%

JSON

PHP remote file inclusion vulnerability in linkadmin.php in Beerwin PHPLinkAdmin 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter.

Affected configurations

NVD

Node

beerwinphplinkadminMatch1.0

CPENameOperatorVersion
beerwin:phplinkadminbeerwin phplinkadmineq1.0

CPE	Name	Operator	Version
beerwin:phplinkadmin	beerwin phplinkadmin	eq	1.0

References

osvdb.org/52779

secunia.com/advisories/34323

www.securityfocus.com/bid/34129

www.vupen.com/english/advisories/2009/0733

exchange.xforce.ibmcloud.com/vulnerabilities/49265

www.exploit-db.com/exploits/8216

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.8 High

AI Score

Confidence

Low

0.027 Low

EPSS

Percentile

90.6%

JSON

Related for CVE-2009-1025

cvelist1 canvas1 prion1 nvd1