Lucene search
MitreCVE-2009-4512HistoryDec 31, 2009 - 7:30 p.m.
CVE-2009-4512
2009-12-3119:30:00
CWE-22
mitre
web.nvd.nist.gov
24
cve-2009-4512
directory traversal
oscailt 3.3
index.php
remote code execution
nvd
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
High
EPSS
0.031
Percentile
91.1%
Directory traversal vulnerability in index.php in Oscailt 3.3, when Use Friendly URL’s is disabled, allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the obj_id parameter.
Affected configurations
Node
indymediaoscailtMatch3.3
Related
exploitdb
exploitdb
Oscailt CMS 3.3 - Local File Inclusion
2009-10-28 00:00:00
prion
prion
Directory traversal
2009-12-31 19:30:00
cvelist
cvelist
CVE-2009-4512
2009-12-31 19:00:00
nvd
nvd
CVE-2009-4512
2009-12-31 19:30:00
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
High
EPSS
0.031
Percentile
91.1%
Related for CVE-2009-4512