Vulnerability CVE-2009-2265

Vulnerability CVE-2009-2265

Published: 2009-07-05 Modified: 2012-02-13

Description:

	Topic	Author	Date
Low	FCKeditor input sanitization errors	Andrea Barisani	07.07.2009
High	Adobe ColdFusion 8 Remote Command Execution	Pergyz	25.06.2021

Type:

(Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
7.5/10	6.4/10	10/10

Affected software
Fckeditor -> Fckeditor

http://isc.sans.org/diary.html?storyid=6724

http://mail.zope.org/pipermail/zope-dev/2009-July/037195.html

http://sourceforge.net/project/shownotes.php?release_id=695430

http://www.debian.org/security/2009/dsa-1836

http://www.ocert.org/advisories/ocert-2009-007.html

http://www.securityfocus.com/archive/1/504721/100/0/threaded

http://www.securitytracker.com/id?1022513

http://www.vupen.com/english/advisories/2009/1813

http://www.vupen.com/english/advisories/2009/1825

https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00710.html

https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00750.html