CVE-2009-4541

NONECVSS 0.0

0.0

Multiple PHP remote file inclusion vulnerabilities in IsolSoft Support Center 2.5 allow remote attackers to execute arbitrary PHP code via a URL in the lang parameter to (1) newticket.php or (2) rempass.php, or a URL in the lang parameter in an adduser action to (3) index.php. NOTE: this can also be leveraged to include and execute arbitrary local files via .. (dot dot) sequences.

🔗 References (16)

cve@mitrehttp://osvdb.org/56869
cve@mitrehttp://osvdb.org/56870
cve@mitrehttp://osvdb.org/56871
cve@mitrehttp://secunia.com/advisories/36208
cve@mitrehttp://www.exploit-db.com/exploits/9397
cve@mitrehttp://www.securityfocus.com/bid/35997
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/52350
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/52352
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/56869
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/56870
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/56871
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/36208
af854a3a-2127-422b-91ae-364da2661108http://www.exploit-db.com/exploits/9397
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/35997
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/52350

Is Your Infrastructure Affected by CVE-2009-4541?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-4541

📅 Published

🔄 Last Modified

🔗 References (16)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-4541?