Vulnerability Details CVE-2009-3284
Directory traversal vulnerability in phpspot PHP BBS, PHP Image Capture BBS, PHP & CSS BBS, PHP BBS CE, PHP_RSS_Builder, and webshot, dated before 20090914, allows remote attackers to read arbitrary files via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 37.5%
CVSS Severity
CVSS v2 Score 5.0
References
- http://jvn.jp/en/jp/JVN65914253/index.html
- http://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000064.html
- http://phpspot.net/php/pg2009%94N9%8C%8E%20PHP%83X%83N%83%8A%83v%83g%82%CC%90%C6%8E%E3%90%AB.html
- http://secunia.com/advisories/36783
- http://jvn.jp/en/jp/JVN65914253/index.html
- http://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000064.html
- http://phpspot.net/php/pg2009%94N9%8C%8E%20PHP%83X%83N%83%8A%83v%83g%82%CC%90%C6%8E%E3%90%AB.html
- http://secunia.com/advisories/36783
Products affected by CVE-2009-3284
-
cpe:2.3:a:phpspot:php_&_css_bbs:*
-
cpe:2.3:a:phpspot:php_bbs:-
-
cpe:2.3:a:phpspot:php_bbs_ce:-
-
cpe:2.3:a:phpspot:php_image_capture_bbs:*
-
cpe:2.3:a:phpspot:php_rss_builder:*
-
cpe:2.3:a:phpspot:webshot:-