CVE-2009-3055

2009-09-0317:00:00

mitre

www.cve.org

7.5 High

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

84.0%

JSON

PHP remote file inclusion vulnerability in engine/api/api.class.php in DataLife Engine (DLE) 8.2 allows remote attackers to execute arbitrary PHP code via a URL in the dle_config_api parameter.

References

www.exploit-db.com/exploits/9572

www.securityfocus.com/bid/36212