Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2009-1936

Published: 05/06/2009 Updated: 26/01/2024
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 685
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

_functions.php in cpCommerce 1.2.x, possibly including 1.2.9, sends a redirect but does not exit when it is called directly, which allows remote malicious users to bypass a protection mechanism to conduct remote file inclusion and directory traversal attacks, execute arbitrary PHP code, or read arbitrary files via the GLOBALS[prefix] parameter, a different vector than CVE-2003-1500.

Vulnerable Product Search on Vulmon Subscribe to Product

cpcommerce project cpcommerce

Exploits

Exploit DB: CPCommerce 1.2.x - 'GLOBALS[prefix]' Arbitrary File Inclusion
#!/usr/bin/perl # # cpCommerce 12x GLOBALS[prefix] Arbitrary File Inclusion Exploit # # by staker # ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ # mail: staker[at]hotmail[dot]it # url: cpcommercecpradioorg # ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ # # it works with register_globals=on # if you wanna carry out a LFI -> mq=off # # short explanati ...

References

CWE-22http://secunia.com/advisories/35245http://www.securityfocus.com/bid/35103https://www.exploit-db.com/exploits/8790https://nvd.nist.govhttps://www.exploit-db.com/exploits/8790/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324path traversalCVE-2024-4743CVE-2024-5184TCPCVE-2024-27822code injectionCVE-2024-28995CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook