Lucene search

K
cve[email protected]CVE-2009-3365
HistorySep 24, 2009 - 4:30 p.m.

CVE-2009-3365

2009-09-2416:30:02
CWE-94
web.nvd.nist.gov
30
cve-2009-3365
php
remote file inclusion
aurora cms
vulnerability
nvd

7.6 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.011 Low

EPSS

Percentile

84.3%

PHP remote file inclusion vulnerability in add-ons/modules/sysmanager/plugins/install.plugin.php in Aurora CMS 1.0.2 allows remote attackers to execute arbitrary PHP code via a URL in the AURORA_MODULES_FOLDER parameter.

Affected configurations

NVD
Node
trazaauroraMatch1.0.2
CPENameOperatorVersion
traza:auroratraza auroraeq1.0.2

7.6 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.011 Low

EPSS

Percentile

84.3%

Related for CVE-2009-3365