Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2009-2143

Published: 22/06/2009 Updated: 29/09/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Wordpress

Vulnerability Summary

PHP remote file inclusion vulnerability in firestats-wordpress.php in the FireStats plugin prior to 1.6.2-stable for WordPress allows remote malicious users to execute arbitrary PHP code via a URL in the fs_javascript parameter.

Vulnerable Product Search on Vulmon Subscribe to Product

firestats firestats 1.6.0

firestats firestats 1.6.0-beta1

firestats firestats 0.9.0-beta

firestats firestats 0.9.1-beta

firestats firestats 0.9.8-beta

firestats firestats 0.9.9

firestats firestats 1.1.3

firestats firestats 1.2.1

firestats firestats 1.2.2

firestats firestats 1.6.0-beta2

firestats firestats 0.9.2-beta

firestats firestats 1.3.4

firestats firestats 1.3.5

firestats firestats 1.3.6

firestats firestats 1.5

firestats firestats 1.5.0-beta

firestats firestats 1.5.5

firestats firestats 1.5.7

firestats firestats 0.9.6-beta

firestats firestats 0.9.7-beta

firestats firestats 1.1.1

firestats firestats 1.1.2

firestats firestats 1.1.8

firestats firestats 1.2.0-beta

firestats firestats 1.3.2-beta

firestats firestats 1.3.3-beta

firestats firestats 1.4.3

firestats firestats 1.4.4

firestats firestats 1.5.3

firestats firestats 1.5.4

firestats firestats 1.5.11

firestats firestats

firestats firestats 0.9.3-beta

firestats firestats 1.0

firestats firestats 1.0.0

firestats firestats 1.0.1

firestats firestats 1.1.4

firestats firestats 1.1.5

firestats firestats 1.2.3

firestats firestats 1.2.4

firestats firestats 1.4

firestats firestats 1.4.0-beta

firestats firestats 1.5.1-beta

firestats firestats 1.5.10

firestats firestats 1.5.8

firestats firestats 1.5.9

firestats firestats 1.6.1

firestats firestats 0.9.4-beta

firestats firestats 0.9.5-beta

firestats firestats 1.0.2

firestats firestats 1.1.6

firestats firestats 1.1.7

firestats firestats 1.3.0-beta

firestats firestats 1.3.1-beta

firestats firestats 1.4.1-beta

firestats firestats 1.4.2-beta

firestats firestats 1.5.12

firestats firestats 1.5.2-beta

firestats firestats 1.6

References

CWE-94http://firestats.cc/wiki/ChangeLog#a1.6.2-stable13062009http://secunia.com/advisories/35400https://www.exploit-db.com/exploits/8945https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook