CVE-2009-2552

Sažetak

Multiple directory traversal vulnerabilities in comments.php in Super Simple Blog Script 2.5.4 allow remote attackers to overwrite, include, and execute arbitrary local files via the entry parameter.

Reference

http://secunia.com/advisories/35859
http://www.exploit-db.com/exploits/9179
https://exchange.xforce.ibmcloud.com/vulnerabilities/51805

CVSS

Base:	6.8
Impact:	6.4
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

19-09-2017 - 01:29

Objavljeno

20-07-2009 - 20:00