Unrated severityNVD Advisory· Published Jan 29, 2009· Updated Jun 16, 2026
CVE-2009-0325
CVE-2009-0325
Description
Directory traversal vulnerability in entries/index.php in Ninja Blog 4.8, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the cat parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:ninjadesigns:ninja_blog:4.8:*:*:*:*:*:*:*
- Range: = 4.8
Patches
Vulnerability mechanics
References
5- www.securityfocus.com/bid/33351nvdExploit
- www.push55.co.uk/poclibrary/ninjadesignscouk-1.txtnvdExploitURL Repurposed
- secunia.com/advisories/33573nvdVendor Advisory
- www.push55.co.uk/index.phpnvdURL Repurposed
- www.exploit-db.com/exploits/7831nvd
News mentions
0No linked articles in our index yet.