Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2009-2333
HistoryJul 05, 2009 - 4:30 p.m.

Directory traversal

2009-07-0516:30:00
PRIOn knowledge base
www.prio-n.com
1

8.2 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.7%

JSON

Multiple directory traversal vulnerabilities in CMS Chainuk 1.2 and earlier allow remote attackers to include and execute arbitrary local files via a … (dot dot) in (1) the menu parameter to admin/admin_menu.php, and the id parameter to (2) index.php and (3) admin/admin_edit.php; and (4) delete arbitrary local files via a … (dot dot) in the id parameter to admin/admin_delete.php. NOTE: vector 2 can be leveraged for static code injection by sending a crafted menu parameter to admin/admin_menu.php, and then sending an id=…/menu.csv request to index.php.

CPENameOperatorVersion
cms_chainukle1.2

Related

cvelist 1
nvd 1
cve 1
cvelist
cvelist
CVE-2009-2333
2009-07-05 16:00:00
nvd
nvd
CVE-2009-2333
2009-07-05 16:30:00
cve
cve
CVE-2009-2333
2009-07-05 16:30:00

8.2 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.7%

JSON
Related for PRION:CVE-2009-2333
cvelist1nvd1cve1