Unrated severityNVD Advisory· Published May 5, 2009· Updated Jun 16, 2026
CVE-2009-1525
CVE-2009-1525
Description
CMD_DB in JBMC Software DirectAdmin before 1.334 allows remote authenticated users to gain privileges via shell metacharacters in the name parameter during a restore action.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:directadmin:directadmin:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:directadmin:directadmin:*:*:*:*:*:*:*:*range: <1.33.4
- (no CPE)range: <1.334
Patches
Vulnerability mechanics
References
5- archives.neohapsis.com/archives/fulldisclosure/2009-04/0228.htmlnvdBroken LinkExploit
- secunia.com/advisories/34861nvdVendor Advisory
- www.directadmin.com/features.phpnvdRelease NotesVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/50167nvdThird Party Advisory
- osvdb.org/54015nvdBroken Link
News mentions
0No linked articles in our index yet.