CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-2558

system/message.php in Admin News Tools 2.5 does not properly restrict access, which allows remote attackers to post news messages via a direct request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.013

EPSS Ranking 78.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://secunia.com/advisories/35842
http://www.exploit-db.com/exploits/9161
https://exchange.xforce.ibmcloud.com/vulnerabilities/51780
http://secunia.com/advisories/35842
http://www.exploit-db.com/exploits/9161
https://exchange.xforce.ibmcloud.com/vulnerabilities/51780

Products affected by CVE-2009-2558

Adminnewstools » Admin News Tools » Version: 2.5

cpe:2.3:a:adminnewstools:admin_news_tools:2.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-2558

Products

Pricing

Contact Us