Unrated severityNVD Advisory· Published Oct 1, 2009· Updated Jun 16, 2026
CVE-2009-3508
CVE-2009-3508
Description
Multiple directory traversal vulnerabilities in MUJE CMS 1.0.4.34 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) _class parameter to admin.php and the (2) url parameter to install/install.php; and allow remote authenticated administrators to read arbitrary files via a .. (dot dot) in the (3) _htmlfile parameter to admin.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:fcgphilipp:mujecms:1.0.4.34:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
2- secunia.com/advisories/36079nvdVendor Advisory
- www.exploit-db.com/exploits/9314nvd
News mentions
0No linked articles in our index yet.