Lucene search
Sarid HarperEDB-ID:32759HistoryJan 26, 2009 - 12:00 a.m.
OpenX 2.6.2 - 'MAX_type' Local File Inclusion
2009-01-2600:00:00
Sarid Harper
www.exploit-db.com
12
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/33458/info
OpenX is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.
An attacker can exploit this vulnerability to view files and execute local scripts in the context of the webserver process. This may aid in further attacks.
OpenX 2.6.3 is affected; other versions may also be vulnerable.
http://www.example.com/www/delivery/fc.php?MAX_type= ../../../../../../../../../../../../../../../etc/passwd%00 Related
prion
prion
Directory traversal
2009-01-27 20:30:00
nvd
nvd
CVE-2009-0291
2009-01-27 20:30:04
cve
cve
CVE-2009-0291
2009-01-27 20:30:04
nessus
nessus
OpenX fc.php MAX_type Parameter Traversal Local File Inclusion
2009-01-30 00:00:00
cvelist
cvelist
CVE-2009-0291
2009-01-27 20:00:00
exploitdb
exploitdb
OpenX 2.6.3 - 'MAX_type' Local File Inclusion
2009-01-26 00:00:00
dsquare
dsquare
OpenX 2.6.3 LFI
2012-04-27 00:00:00
securityvulns
securityvulns