CVE-2009-3284
Severity CVSS v4.0:
Pending analysis
Type:
CWE-22
Path Traversal
Publication date:
22/09/2009
Last modified:
09/04/2025
Description
Directory traversal vulnerability in phpspot PHP BBS, PHP Image Capture BBS, PHP & CSS BBS, PHP BBS CE, PHP_RSS_Builder, and webshot, dated before 20090914, allows remote attackers to read arbitrary files via unspecified vectors.
Impact
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:phpspot:php_\&_css_bbs:*:*:*:*:*:*:*:* | ||
| cpe:2.3:a:phpspot:php_bbs:*:*:*:*:*:*:*:* | ||
| cpe:2.3:a:phpspot:php_bbs_ce:*:*:*:*:*:*:*:* | ||
| cpe:2.3:a:phpspot:php_image_capture_bbs:*:*:*:*:*:*:*:* | ||
| cpe:2.3:a:phpspot:php_rss_builder:*:*:*:*:*:*:*:* | ||
| cpe:2.3:a:phpspot:webshot:*:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://jvn.jp/en/jp/JVN65914253/index.html
- http://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000064.html
- http://phpspot.net/php/pg2009%94N9%8C%8E%20PHP%83X%83N%83%8A%83v%83g%82%CC%90%C6%8E%E3%90%AB.html
- http://secunia.com/advisories/36783
- http://jvn.jp/en/jp/JVN65914253/index.html
- http://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000064.html
- http://phpspot.net/php/pg2009%94N9%8C%8E%20PHP%83X%83N%83%8A%83v%83g%82%CC%90%C6%8E%E3%90%AB.html
- http://secunia.com/advisories/36783