7.5
CVSSv2

CVE-2009-0766

Published: 06/03/2009 Updated: 06/03/2009
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

Directory traversal vulnerability in default.php in Kipper 2.01 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the configfile parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Product Search on Vulmon Subscribe to Product

bookelves kipper 2.01

Exploits

# Kipper 201 Multiple Vulnes ( Remote Data Reading , Local File Include , Remote XSS ) # Download From : wwwbookelvescom/kipper/files/kipper20zip - Found By : RoMaNcYxHaCkEr - My Site : WwWSec-CodeCoM - My Group : Security - Codes Group # Exploit [1]: - Remote Data Reading : localhost/kipper20/job/configdata # Exploit [2] ...