CVE-2009-0444

Name of the Vulnerable Software and Affected Versions GRBoard version 1.8

Description The issue allows remote attackers to execute arbitrary PHP code via a URL in certain parameters when register globals is enabled and magic quotes gpc is disabled. This can be achieved through the theme parameter to various PHP files in the theme/ directory, the path parameter to latest/sirini gallery latest/list.php, and the grboard parameter to include.php and form mail.php. The estimated number of potentially affected devices worldwide is not available. There is no information about real-world incidents where this issue was exploited.

Recommendations For GRBoard version 1.8, consider disabling the register globals setting and enabling magic quotes gpc to prevent exploitation. Additionally, restrict access to the vulnerable API endpoints, such as "179 squarebox pds list/view.php", "latest/sirini gallery latest/list.php", "include.php", and "form mail.php", by limiting the input for the theme, path, and grboard parameters. Avoid using the theme, path, and grboard parameters in the affected API endpoints until the issue is resolved.