7.5

CVE-2009-4140

Exploit

EPSS 91.09%
Veröffentlicht 22.12.2009 22:30:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle secalert@redhat.com
CVE-Watchlists
Login
Unerledigt
Login

Various Affected Software (Various Versions) - Arbitrary File Upload

Unrestricted file upload vulnerability in ofc_upload_image.php in Open Flash Chart v2 Beta 1 through v2 Lug Wyrm Charmer, as used in Piwik 0.2.35 through 0.4.3, Woopra Analytics Plugin before 1.4.3.2, and possibly other products, when register_globals is enabled, allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension through the name parameter with the code in the HTTP_RAW_POST_DATA parameter, then accessing it via a direct request to the file in tmp-upload-images/.

Mögliche Gegenmaßnahme

Piwik PRO: Update to version 0.4.4, or a newer patched version

Woopra Analytics Plugin: Update to version 1.4.3.2, or a newer patched version

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 20

Weitere Schwachstelleninformationen

SystemWordPress Plugin

≫

Produkt Piwik PRO

Version 0.2.35-0.4.3

SystemWordPress Plugin

≫

Produkt Woopra Analytics Plugin

Version *-1.4.3.1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Teethgrinder.Co.Uk ≫ Open Flash Chart Version2.0 Updatebeta_1

Teethgrinder.Co.Uk ≫ Open Flash Chart Version2.0 Updategamera

Teethgrinder.Co.Uk ≫ Open Flash Chart Version2.0 Updatehyperion

Teethgrinder.Co.Uk ≫ Open Flash Chart Version2.0 Updateichor

Teethgrinder.Co.Uk ≫ Open Flash Chart Version2.0 Updatej_rmungandr

Teethgrinder.Co.Uk ≫ Open Flash Chart Version2.0 Updatej_rmungandr-2

Teethgrinder.Co.Uk ≫ Open Flash Chart Version2.0 Updatekvasir

Teethgrinder.Co.Uk ≫ Open Flash Chart Version2.0 Updatelug_wyrm_charmer

Matomo ≫ Matomo Version0.2.37

Matomo ≫ Matomo Version0.4.2

Matomo ≫ Matomo Version0.4.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	91.09%	0.996

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://packetstormsecurity.com/files/123493/wpseowatcher-exec.txt

http://packetstormsecurity.com/files/123494/wpslimstatex-exec.txt

http://packetstormsecurity.org/0910-exploits/piwik-upload.txt

Exploit

http://piwik.org/blog/2009/10/piwik-response-to-secunia-advisory-sa37078/

Vendor Advisory

http://secunia.com/advisories/37078

Vendor Advisory

http://secunia.com/advisories/37911

Vendor Advisory

http://secunia.com/advisories/55160

http://secunia.com/advisories/55162

http://wordpress.org/extend/plugins/woopra/changelog/

http://www.exploit-db.com/exploits/24969

http://www.openwall.com/lists/oss-security/2009/12/14/1

http://www.openwall.com/lists/oss-security/2009/12/14/3

http://www.osvdb.org/59051

http://www.securityfocus.com/bid/37314

Exploit

http://www.vupen.com/english/advisories/2009/2966

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/53825

https://www.wordfence.com/threat-intel/vulnerabilities/id/5d5d9ef7-3832-495c-b61b-7e24c2e60893

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2009-4140

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-4140

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-4140

EUVD