CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-2223

Directory traversal vulnerability in locms/smarty.php in LightOpenCMS 0.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the cwd parameter. NOTE: remote file inclusion attacks may be possible.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 72.3%

CVSS Severity

CVSS v2 Score 9.3

References

http://www.exploit-db.com/exploits/9015
http://www.exploit-db.com/exploits/9015

Products affected by CVE-2009-2223

Teozkr » Lightopencms » Version: 0.1

cpe:2.3:a:teozkr:lightopencms:0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-2223

Products

Pricing

Contact Us