Lucene search
MitreCVE-2009-1456HistoryApr 28, 2009 - 4:30 p.m.
CVE-2009-1456
2009-04-2816:30:03
CWE-22
mitre
web.nvd.nist.gov
26
cve-2009-1456
directory traversal
admin.php
malleo 1.2.3
remote code execution
security vulnerability
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
7
Confidence
Low
EPSS
0.008
Percentile
81.7%
Directory traversal vulnerability in admin.php in Malleo 1.2.3 allows remote authenticated administrators to include and execute arbitrary local files via a … (dot dot) in the module parameter.
Affected configurations
Node
stephane_rajalumalleoMatch1.2.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| stephane_rajalu | malleo | 1.2.3 | cpe:2.3:a:stephane_rajalu:malleo:1.2.3:*:*:*:*:*:*:* |
Related
prion
prion
Directory traversal
2009-04-28 16:30:00
cvelist
cvelist
CVE-2009-1456
2009-04-28 16:00:00
nvd
nvd
CVE-2009-1456
2009-04-28 16:30:03
exploitdb
exploitdb
Malleo 1.2.3 - 'admin.php' Local File Inclusion
2009-04-17 00:00:00
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
7
Confidence
Low
EPSS
0.008
Percentile
81.7%
Related for CVE-2009-1456