Lucene search
Ubuntu.comUB:CVE-2009-4412HistoryDec 24, 2009 - 12:00 a.m.
CVE-2009-4412
2009-12-2400:00:00
ubuntu.com
ubuntu.com
8
6 Medium
CVSS2
Access Vector
Access Complexity
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
0.014 Low
EPSS
Percentile
86.5%
Unrestricted file upload vulnerability in Serendipity before 1.5 allows
remote authenticated users to execute arbitrary code by uploading a file
with an executable extension followed by a safe extension, then accessing
it via a direct request to the file in an unspecified directory. NOTE:
some of these details are obtained from third party information.
Related
cve
cve
CVE-2009-4412
2009-12-24 16:30:00
prion
prion
Unrestricted file upload
2009-12-24 16:30:00
openvas
openvas
Serendipity File Extension Processing Arbitrary File Upload Vulnerability
2010-01-04 00:00:00
nvd
nvd
CVE-2009-4412
2009-12-24 16:30:00
cvelist
cvelist
CVE-2009-4412
2009-12-24 16:00:00
6 Medium
CVSS2
Access Vector
Access Complexity
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
0.014 Low
EPSS
Percentile
86.5%
Related for UB:CVE-2009-4412