Lucene search
MitreCVE-2009-1278HistoryApr 09, 2009 - 4:27 p.m.
CVE-2009-1278
2009-04-0916:27:57
CWE-94
mitre
web.nvd.nist.gov
23
cve-2009-1278
static code injection
gravity board x
gbx 2.0 beta
remote attack
php code
config.php
index.php
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.005
Percentile
76.8%
Static code injection vulnerability in forms/ajax/configure.php in Gravity Board X (GBX) 2.0 BETA allows remote attackers to inject arbitrary PHP code into config.php via the configure action to index.php.
Affected configurations
Node
gravityboardxgravity_board_xMatch2.0beta
| Vendor | Product | Version | CPE |
|---|---|---|---|
| gravityboardx | gravity_board_x | 2.0 | cpe:2.3:a:gravityboardx:gravity_board_x:2.0:beta:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2009-1278
2009-04-09 16:00:00
prion
prion
Code injection
2009-04-09 16:27:00
nvd
nvd
CVE-2009-1278
2009-04-09 16:27:57
exploitdb
exploitdb
Gravity Board X 2.0 Beta - SQL Injection / (Authenticated) Code Execution
2009-04-03 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.005
Percentile
76.8%
Related for CVE-2009-1278