Lucene search

[email protected]NVD:CVE-2009-1318

HistoryApr 17, 2009 - 2:08 p.m.

CVE-2009-1318

2009-04-1714:08:52

CWE-22

[email protected]

web.nvd.nist.gov

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

6.9

Confidence

High

EPSS

0.014

Percentile

86.2%

JSON

Directory traversal vulnerability in index.php in Jamroom 3.1.2, 3.2.3 through 3.2.6, 4.0.2, and possibly other versions before 3.4.0 allows remote attackers to include arbitrary files via directory traversal sequences in the t parameter.

Affected configurations

Nvd

Node

jamroomjamroom

jamroomjamroomMatch1.0

jamroomjamroomMatch1.0b1

jamroomjamroomMatch1.0b2

jamroomjamroomMatch1.0b3

jamroomjamroomMatch1.0b4

jamroomjamroomMatch1.0b5

jamroomjamroomMatch2.0.9

jamroomjamroomMatch2.0.9a

jamroomjamroomMatch2.6.10

jamroomjamroomMatch2.6.11

jamroomjamroomMatch2.6.12

jamroomjamroomMatch2.60

jamroomjamroomMatch2.60rc2

jamroomjamroomMatch2.60rc3

jamroomjamroomMatch2.61

jamroomjamroomMatch2.62

jamroomjamroomMatch2.63

jamroomjamroomMatch2.64

jamroomjamroomMatch2.65

jamroomjamroomMatch2.66

jamroomjamroomMatch2.67

jamroomjamroomMatch2.68

jamroomjamroomMatch2.69

jamroomjamroomMatch3.0

jamroomjamroomMatch3.0b1

jamroomjamroomMatch3.0b2

jamroomjamroomMatch3.0b3

jamroomjamroomMatch3.0b4

jamroomjamroomMatch3.0b5

jamroomjamroomMatch3.0b6

jamroomjamroomMatch3.0b7

jamroomjamroomMatch3.0b8

jamroomjamroomMatch3.0.1

jamroomjamroomMatch3.0.2

jamroomjamroomMatch3.0.3

jamroomjamroomMatch3.0.4

jamroomjamroomMatch3.0.5

jamroomjamroomMatch3.0.6

jamroomjamroomMatch3.0.7

jamroomjamroomMatch3.0.8

jamroomjamroomMatch3.0.9

jamroomjamroomMatch3.0.10

jamroomjamroomMatch3.0.11

jamroomjamroomMatch3.0.12

jamroomjamroomMatch3.0.13

jamroomjamroomMatch3.0.14

jamroomjamroomMatch3.0.15

jamroomjamroomMatch3.0.16

jamroomjamroomMatch3.0.17

jamroomjamroomMatch3.0.18

jamroomjamroomMatch3.0.19

jamroomjamroomMatch3.0.20

jamroomjamroomMatch3.0.21

jamroomjamroomMatch3.0.22

jamroomjamroomMatch3.0.23

jamroomjamroomMatch3.0.24

jamroomjamroomMatch3.0.25

jamroomjamroomMatch3.0.26

jamroomjamroomMatch3.0.27

jamroomjamroomMatch3.0.28

jamroomjamroomMatch3.0.29

jamroomjamroomMatch3.0.30

jamroomjamroomMatch3.1.0

jamroomjamroomMatch3.1.0b1

jamroomjamroomMatch3.1.0b2

jamroomjamroomMatch3.1.0b3

jamroomjamroomMatch3.1.1

jamroomjamroomMatch3.1.2

jamroomjamroomMatch3.1.3

jamroomjamroomMatch3.1.4

jamroomjamroomMatch3.1.5

jamroomjamroomMatch3.2.0

jamroomjamroomMatch3.2.1

jamroomjamroomMatch3.2.2

jamroomjamroomMatch3.2.3

jamroomjamroomMatch3.2.4

jamroomjamroomMatch3.2.5

jamroomjamroomMatch3.2.6

jamroomjamroomMatch3.3.0

jamroomjamroomMatch3.3.1

jamroomjamroomMatch3.3.2

jamroomjamroomMatch3.3.3

jamroomjamroomMatch3.3.4

jamroomjamroomMatch3.3.5

jamroomjamroomMatch3.3.6

jamroomjamroomMatch3.3.7

jamroomjamroomMatch3.3.8

jamroomjamroomMatch4.0.2

VendorProductVersionCPE
jamroomjamroom*cpe:2.3:a:jamroom:jamroom:*:*:*:*:*:*:*:*
jamroomjamroom1.0cpe:2.3:a:jamroom:jamroom:1.0:*:*:*:*:*:*:*
jamroomjamroom1.0cpe:2.3:a:jamroom:jamroom:1.0:b1:*:*:*:*:*:*
jamroomjamroom1.0cpe:2.3:a:jamroom:jamroom:1.0:b2:*:*:*:*:*:*
jamroomjamroom1.0cpe:2.3:a:jamroom:jamroom:1.0:b3:*:*:*:*:*:*
jamroomjamroom1.0cpe:2.3:a:jamroom:jamroom:1.0:b4:*:*:*:*:*:*
jamroomjamroom1.0cpe:2.3:a:jamroom:jamroom:1.0:b5:*:*:*:*:*:*
jamroomjamroom2.0.9cpe:2.3:a:jamroom:jamroom:2.0.9:*:*:*:*:*:*:*
jamroomjamroom2.0.9cpe:2.3:a:jamroom:jamroom:2.0.9:a:*:*:*:*:*:*
jamroomjamroom2.6.10cpe:2.3:a:jamroom:jamroom:2.6.10:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
jamroom	jamroom	*	cpe:2.3:a:jamroom:jamroom::::::::
jamroom	jamroom	1.0	cpe:2.3:a:jamroom:jamroom:1.0:::::::*
jamroom	jamroom	1.0	cpe:2.3:a:jamroom:jamroom:1.0:b1::::::
jamroom	jamroom	1.0	cpe:2.3:a:jamroom:jamroom:1.0:b2::::::
jamroom	jamroom	1.0	cpe:2.3:a:jamroom:jamroom:1.0:b3::::::
jamroom	jamroom	1.0	cpe:2.3:a:jamroom:jamroom:1.0:b4::::::
jamroom	jamroom	1.0	cpe:2.3:a:jamroom:jamroom:1.0:b5::::::
jamroom	jamroom	2.0.9	cpe:2.3:a:jamroom:jamroom:2.0.9:::::::*
jamroom	jamroom	2.0.9	cpe:2.3:a:jamroom:jamroom:2.0.9:a::::::
jamroom	jamroom	2.6.10	cpe:2.3:a:jamroom:jamroom:2.6.10:::::::*

Rows per page:

1-10 of 891

References

www.jamroom.net/index.php?m=td_tracker&o=view&id=1470

www.securityfocus.com/bid/34511

exchange.xforce.ibmcloud.com/vulnerabilities/49869

www.exploit-db.com/exploits/8423

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

6.9

Confidence

High

EPSS

0.014

Percentile

86.2%

JSON

Related for NVD:CVE-2009-1318

prion1 cvelist1 cve1 exploitdb1