Vulnerability Details CVE-2009-2111
Static code injection vulnerability in add_reg.php in DB Top Sites 1.0 allows remote attackers to inject arbitrary PHP code via a crafted (1) url and (2) location parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.025
EPSS Ranking 84.8%
CVSS Severity
CVSS v2 Score 10.0
References
- http://osvdb.org/55119
- http://secunia.com/advisories/35419
- https://exchange.xforce.ibmcloud.com/vulnerabilities/51121
- https://www.exploit-db.com/exploits/8951
- http://osvdb.org/55119
- http://secunia.com/advisories/35419
- https://exchange.xforce.ibmcloud.com/vulnerabilities/51121
- https://www.exploit-db.com/exploits/8951
Products affected by CVE-2009-2111
-
cpe:2.3:a:jnmsolutions:db_top_sites:1.0