PT-2009-3025 · Citadel.Org · Webcit
Wilfried Goesgens
·
Published
2009-03-24
·
Updated
2009-04-02
·
CVE-2009-0364
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Citadel.org WebCit versions 7.22 through 7.38
Description
A format string issue in the mini calendar component allows remote attackers to execute arbitrary code.
Recommendations
For versions 7.22 through 7.38, update to version 7.39 or later to resolve the issue.
Fix
Use of Externally-Controlled Format String
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Webcit