CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-0372

Unrestricted file upload vulnerability in index.php in Miltenovik Manojlo MemHT Portal 4.0.1 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension and an image content type via a users editProfile action, then accessing this file via a direct request to the file in images/avatar/uploaded/.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.032

EPSS Ranking 86.5%

CVSS Severity

CVSS v2 Score 6.5

References

Products affected by CVE-2009-0372

Memht » Memht Portal » Version: Any

cpe:2.3:a:memht:memht_portal:*
Memht » Memht Portal » Version: 1.0

cpe:2.3:a:memht:memht_portal:1.0
Memht » Memht Portal » Version: 1.5

cpe:2.3:a:memht:memht_portal:1.5
Memht » Memht Portal » Version: 2.0

cpe:2.3:a:memht:memht_portal:2.0
Memht » Memht Portal » Version: 2.5

cpe:2.3:a:memht:memht_portal:2.5
Memht » Memht Portal » Version: 2.9

cpe:2.3:a:memht:memht_portal:2.9
Memht » Memht Portal » Version: 3.0

cpe:2.3:a:memht:memht_portal:3.0
Memht » Memht Portal » Version: 3.1

cpe:2.3:a:memht:memht_portal:3.1
Memht » Memht Portal » Version: 3.2

cpe:2.3:a:memht:memht_portal:3.2
Memht » Memht Portal » Version: 3.3

cpe:2.3:a:memht:memht_portal:3.3
Memht » Memht Portal » Version: 3.4

cpe:2.3:a:memht:memht_portal:3.4
Memht » Memht Portal » Version: 3.4.5

cpe:2.3:a:memht:memht_portal:3.4.5
Memht » Memht Portal » Version: 3.5.0

cpe:2.3:a:memht:memht_portal:3.5.0
Memht » Memht Portal » Version: 3.6.0

cpe:2.3:a:memht:memht_portal:3.6.0
Memht » Memht Portal » Version: 3.6.5

cpe:2.3:a:memht:memht_portal:3.6.5
Memht » Memht Portal » Version: 3.7.0

cpe:2.3:a:memht:memht_portal:3.7.0
Memht » Memht Portal » Version: 3.7.5

cpe:2.3:a:memht:memht_portal:3.7.5
Memht » Memht Portal » Version: 3.8.0

cpe:2.3:a:memht:memht_portal:3.8.0
Memht » Memht Portal » Version: 3.8.1

cpe:2.3:a:memht:memht_portal:3.8.1
Memht » Memht Portal » Version: 3.8.5

cpe:2.3:a:memht:memht_portal:3.8.5
Memht » Memht Portal » Version: 3.9.0

cpe:2.3:a:memht:memht_portal:3.9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-0372

Products

Pricing

Contact Us