CVE-2009-0643
N/A
N/A
Summary
Static code injection vulnerability in post.php in Simple PHP News 1.0 final allows remote attackers to inject arbitrary PHP code into news.txt via the post parameter, and then execute the code via a direct request to display.php. NOTE: some of these details are obtained from third party information.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://www.exploit-db.com/exploits/7999
- http://osvdb.org/51816
- http://secunia.com/advisories/33814
- http://www.vupen.com/english/advisories/2009/0357
- https://exchange.xforce.ibmcloud.com/vulnerabilities/48829
References
- https://www.exploit-db.com/exploits/7999
- http://osvdb.org/51816
- http://secunia.com/advisories/33814
- http://www.vupen.com/english/advisories/2009/0357
- https://exchange.xforce.ibmcloud.com/vulnerabilities/48829
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.