Lucene search
MitreCVE-2009-2111HistoryJun 18, 2009 - 9:30 p.m.
CVE-2009-2111
2009-06-1821:30:00
CWE-94
mitre
web.nvd.nist.gov
23
cve-2009-2111
static code injection
db top sites
vulnerability
remote attack
php code
url
location parameter
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.4
Confidence
Low
EPSS
0.023
Percentile
89.8%
Static code injection vulnerability in add_reg.php in DB Top Sites 1.0 allows remote attackers to inject arbitrary PHP code via a crafted (1) url and (2) location parameter.
Affected configurations
Node
jnmsolutionsdb_top_sitesMatch1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| jnmsolutions | db_top_sites | 1.0 | cpe:2.3:a:jnmsolutions:db_top_sites:1.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2009-2111
2009-06-18 21:00:00
nvd
nvd
CVE-2009-2111
2009-06-18 21:30:00
prion
prion
Code injection
2009-06-18 21:30:00
exploitdb
exploitdb
DB Top Sites 1.0 - Remote Command Execution
2009-06-15 00:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.4
Confidence
Low
EPSS
0.023
Percentile
89.8%
Related for CVE-2009-2111