Lucene search
MitreCVE-2009-3825HistoryOct 28, 2009 - 10:30 a.m.
CVE-2009-3825
2009-10-2810:30:00
CWE-22
mitre
web.nvd.nist.gov
26
cve
gencms 2006
directory traversal
remote attackers
arbitrary local files
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.3
Confidence
Low
EPSS
0.011
Percentile
84.7%
Multiple directory traversal vulnerabilities in GenCMS 2006 allow remote attackers to include and execute arbitrary local files via a … (dot dot) in the (1) p parameter to show.php and the (2) Template parameter to admin/pages/SiteNew.php.
Affected configurations
Node
thomas_grabergencmsMatch2006
| Vendor | Product | Version | CPE |
|---|---|---|---|
| thomas_graber | gencms | 2006 | cpe:2.3:a:thomas_graber:gencms:2006:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2009-3825
2009-10-28 10:30:00
cvelist
cvelist
CVE-2009-3825
2009-10-28 10:00:00
prion
prion
Directory traversal
2009-10-28 10:30:00
exploitdb
exploitdb
gencms 2006 - Multiple Vulnerabilities
2009-07-10 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.3
Confidence
Low
EPSS
0.011
Percentile
84.7%
Related for CVE-2009-3825