CVE-2009-4202
published 2009-12-04CVE-2009-4202: Directory traversal vulnerability in the Omilen Photo Gallery (com_omphotogallery) component Beta 0.5 for Joomla! allows remote attackers to include and…
PriorityP348high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
8.11%
94.1th percentile
Directory traversal vulnerability in the Omilen Photo Gallery (com_omphotogallery) component Beta 0.5 for Joomla! allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the controller parameter to index.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| omilenitsolutions | com_omphotogallery | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Joomla! Component Omilen Photo Gallery 0.5b - Local File Inclusion
exploitdb·2009-06-03
CVE-2009-4202 Joomla! Component Omilen Photo Gallery 0.5b - Local File Inclusion
Joomla! Component Omilen Photo Gallery 0.5b - Local File Inclusion
---
@~~=======================================~~@
====C4TEAM.ORG====ByALBAYX====C4TEAM.ORG=====
@~~=======================================~~@
@~~=Author : ByALBAYX
@~~=Website : WWW.C4TEAM.ORG
@~~===============TURKISH=================~~@
@~~=======================================~~@
@~~=Script : Omilen Photo Gallery Beta 0.5
@~~=S.Site : http://omilenitsolutions.com
@~~=======================================~~@
@~~=Vul :
@~~=http://c4team.org/ [Yol] /index.php?option=com_omphotogallery&controller= [-LFI-]
@~~=Dork : inurl:"com_omphotogallery"
@~~=http://kht.by.ru/Google.txt
@~~=Vs..
_.--"""""--._
.' '.
/ \
; C4TEAM ;
| |
| |
; ; ByALBAYX
\ (`'--, ,--'`) /
\ \ _ ) ( _ / / WWW.C4TEAM.ORG
) )(')/ \(')( (
(_ `""` /\
Nuclei
Joomla! Omilen Photo Gallery 0.5b - Local File Inclusion
nuclei·CVSS 7.5
CVE-2009-4202 [HIGH] Joomla! Omilen Photo Gallery 0.5b - Local File Inclusion
Joomla! Omilen Photo Gallery 0.5b - Local File Inclusion
Joomla! Omilen Photo Gallery (com_omphotogallery) component Beta 0.5 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the controller parameter to index.php.
Template:
id: CVE-2009-4202
info:
name: Joomla! Omilen Photo Gallery 0.5b - Local File Inclusion
author: daffainfo
severity: high
description: Joomla! Omilen Photo Gallery (com_omphotogallery) component Beta 0.5 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the controller parameter to index.php.
impact: |
Successful exploitation of this vulnerability can lead to unauthorized access to sensitive files and potential remote code execution.
remediation: |
Upgrade t
2009-12-04
Published