Lucene search
HistoryOct 03, 2022 - 4:23 p.m.
CVE-2009-3705
cve
2009
3705
php
remote file inclusion
vulnerability
debugger.php
achievo
arbitrary code execution
nvd
7.5 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.02 Low
EPSS
Percentile
88.8%
PHP remote file inclusion vulnerability in debugger.php in Achievo before 1.4.0 allows remote attackers to execute arbitrary PHP code via a URL in the config_atkroot parameter.
Affected configurations
Node
achievoachievoRange≤1.3.4
ORachievoachievoMatch0.7.0
ORachievoachievoMatch0.7.1
ORachievoachievoMatch0.7.2
ORachievoachievoMatch0.7.3
ORachievoachievoMatch0.8.0
ORachievoachievoMatch0.8.0rc1
ORachievoachievoMatch0.8.0rc2
ORachievoachievoMatch0.8.1
ORachievoachievoMatch0.9.0
ORachievoachievoMatch0.9.1
ORachievoachievoMatch1.0.0
ORachievoachievoMatch1.0.0rc1
ORachievoachievoMatch1.0.0rc2
ORachievoachievoMatch1.0.0rc3
ORachievoachievoMatch1.0.1
ORachievoachievoMatch1.0.2
ORachievoachievoMatch1.0.3
ORachievoachievoMatch1.0.4
ORachievoachievoMatch1.1.0
ORachievoachievoMatch1.1.0rc1
ORachievoachievoMatch1.1.0rc2
ORachievoachievoMatch1.1.0rc3
ORachievoachievoMatch1.2.0
ORachievoachievoMatch1.2.0rc1
ORachievoachievoMatch1.2.1
ORachievoachievoMatch1.3.0
ORachievoachievoMatch1.3.0rc1
ORachievoachievoMatch1.3.0rc2
ORachievoachievoMatch1.3.1
ORachievoachievoMatch1.3.2
ORachievoachievoMatch1.3.3
Related
cvelist
cvelist
CVE-2009-3705
2022-10-03 16:23:56
prion
prion
Remote file inclusion
2009-10-16 16:30:00
nvd
nvd
CVE-2009-3705
2009-10-16 16:30:00
7.5 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.02 Low
EPSS
Percentile
88.8%
Related for CVE-2009-3705