CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-0596

Directory traversal vulnerability in skysilver/login.tpl.php in phpSkelSite 1.4, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the TplSuffix parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.027

EPSS Ranking 85.5%

CVSS Severity

CVSS v2 Score 6.8

References

http://secunia.com/advisories/33382
http://www.securityfocus.com/bid/33092
https://www.exploit-db.com/exploits/7648
http://secunia.com/advisories/33382
http://www.securityfocus.com/bid/33092
https://www.exploit-db.com/exploits/7648

Products affected by CVE-2009-0596

Phpskelsite » Phpskelsite » Version: 1.4

cpe:2.3:a:phpskelsite:phpskelsite:1.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-0596

Products

Pricing

Contact Us