Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2009-2265
HistoryJul 05, 2009 - 4:30 p.m.

CVE-2009-2265

2009-07-0516:30:00
CWE-22
[email protected]
web.nvd.nist.gov
155
1
cve
2009
2265
fckeditor
directory traversal
remote code execution
nvd

7.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.972 High

EPSS

Percentile

99.8%

JSON

Multiple directory traversal vulnerabilities in FCKeditor before 2.6.4.1 allow remote attackers to create executable files in arbitrary directories via directory traversal sequences in the input to unspecified connector modules, as exploited in the wild for remote code execution in July 2009, related to the file browser and the editor/filemanager/connectors/ directory.

Social References

More

Related

debian 3
fedora 5
zdt 1
nessus 6
packetstorm 2
canvas 1
securityvulns 3
debiancve 1
openvas 12
prion 1
ubuntucve 1
exploitdb 1
seebug 1
checkpoint_advisories 1
debian
debian
[Backports-security-announce] Security Update for egroupware
2009-08-04 18:52:05
[SECURITY] [DSA 1836-1] New fckeditor packages fix arbitrary code execution
2009-07-16 17:55:39
[Backports-security-announce] Security Update for egroupware
2009-08-04 18:10:26
fedora
fedora
[SECURITY] Fedora 11 Update: moin-1.8.7-1.fc11
2010-02-20 00:15:56
[SECURITY] Fedora 11 Update: moin-1.8.4-2.fc11
2009-07-19 10:36:56
[SECURITY] Fedora 11 Update: moin-1.8.8-1.fc11
2010-06-14 17:22:06
zdt
zdt
Adobe ColdFusion 8 - Remote Command Execution Exploit
2021-06-25 00:00:00
nessus
nessus
Fedora 10 : moin-1.6.4-3.fc10 (2009-7761)
2009-07-20 00:00:00
Adobe ColdFusion FCKeditor 'CurrentFolder' File Upload
2009-07-14 00:00:00
Debian DSA-1836-1 : fckeditor - missing input sanitising
2010-02-24 00:00:00
packetstorm
packetstorm
Adobe ColdFusion 8 Remote Command Execution
2021-06-24 00:00:00
ColdFusion 8.0.1 Arbitrary File Upload And Execute
2010-11-03 00:00:00
canvas
canvas
Immunity Canvas: FCKEDITOR
2009-07-05 16:30:00
securityvulns
securityvulns
[oCERT-2009-007] FCKeditor input sanitization errors
2009-07-03 00:00:00
[SECURITY] [DSA 1836-1] New fckeditor packages fix arbitrary code execution
2009-07-18 00:00:00
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2009-07-03 00:00:00
debiancve
debiancve
CVE-2009-2265
2009-07-05 16:30:00
openvas
openvas
Fedora Core 11 FEDORA-2009-7794 (moin)
2009-07-29 00:00:00
Fedora Update for moin FEDORA-2010-1743
2010-03-02 00:00:00
Fedora Core 11 FEDORA-2009-7794 (moin)
2009-07-29 00:00:00
prion
prion
Directory traversal
2009-07-05 16:30:00
ubuntucve
ubuntucve
CVE-2009-2265
2009-07-05 00:00:00
exploitdb
exploitdb
Adobe ColdFusion 8 - Remote Command Execution (RCE)
2021-06-24 00:00:00
seebug
seebug
FCKeditor connectorsๆจกๅ—ๅคšไธช่ทจ็ซ™่„šๆœฌๅŠ็›ฎๅฝ•้ๅŽ†ๆผๆดž
2009-07-07 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe ColdFusion FCKeditor Input Validation Flaw Arbitrary File Upload (CVE-2008-6178; CVE-2009-2265)
2014-11-17 00:00:00

7.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.972 High

EPSS

Percentile

99.8%

JSON
Related for CVE-2009-2265
debian3fedora5zdt1nessus6packetstorm2canvas1securityvulns3debiancve1openvas12prion1ubuntucve1exploitdb1seebug1checkpoint_advisories1