CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-0291

Directory traversal vulnerability in fc.php in OpenX 2.6.3 allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the MAX_type parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.014

EPSS Ranking 79.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/archive/1/500411/100/0/threaded
http://www.securityfocus.com/bid/33458
https://www.exploit-db.com/exploits/7883
http://www.securityfocus.com/archive/1/500411/100/0/threaded
http://www.securityfocus.com/bid/33458
https://www.exploit-db.com/exploits/7883

Products affected by CVE-2009-0291

Openx » Openx » Version: 2.6.3

cpe:2.3:a:openx:openx:2.6.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-0291

Products

Pricing

Contact Us