Unrated severityNVD Advisory· Published Jun 18, 2009· Updated Jun 16, 2026
CVE-2009-2109
CVE-2009-2109
Description
Multiple directory traversal vulnerabilities in FretsWeb 1.2 allow remote attackers to read arbitrary files via directory traversal sequences in the (1) language parameter to charts.php and the (2) fretsweb_language cookie parameter to unspecified vectors, possibly related to admin/common.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:fretsweb_project:fretsweb:1.2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:fretsweb_project:fretsweb:1.2:*:*:*:*:*:*:*
- (no CPE)range: =1.2
Patches
Vulnerability mechanics
References
4- secunia.com/advisories/35492nvdVendor Advisory
- www.exploit-db.com/exploits/8979nvdThird Party AdvisoryVDB Entry
- osvdb.org/55166nvdBroken Link
- osvdb.org/55196nvdBroken Link
News mentions
0No linked articles in our index yet.