Unrated severityNVD Advisory· Published Oct 9, 2009· Updated Apr 23, 2026
CVE-2009-3654
CVE-2009-3654
Description
Unspecified vulnerability in Boost before 6.x-1.03, a module for Drupal, allows remote attackers to create new webroot directories via unknown attack vectors.
Affected products
15cpe:2.3:a:316solutions:boost:*:*:*:*:*:*:*:*+ 14 more
- cpe:2.3:a:316solutions:boost:*:*:*:*:*:*:*:*range: <=6.x-1.01
- cpe:2.3:a:316solutions:boost:6.x-1.0:*:*:*:*:*:*:*
- cpe:2.3:a:316solutions:boost:6.x-1.0-alpha1:*:*:*:*:*:*:*
- cpe:2.3:a:316solutions:boost:6.x-1.0-alpha2:*:*:*:*:*:*:*
- cpe:2.3:a:316solutions:boost:6.x-1.0-alpha3:*:*:*:*:*:*:*
- cpe:2.3:a:316solutions:boost:6.x-1.0-alpha4:*:*:*:*:*:*:*
- cpe:2.3:a:316solutions:boost:6.x-1.0-beta1:*:*:*:*:*:*:*
- cpe:2.3:a:316solutions:boost:6.x-1.0-beta2:*:*:*:*:*:*:*
- cpe:2.3:a:316solutions:boost:6.x-1.0-rc1:*:*:*:*:*:*:*
- cpe:2.3:a:316solutions:boost:6.x-1.0-rc2:*:*:*:*:*:*:*
- cpe:2.3:a:316solutions:boost:6.x-1.0-rc3:*:*:*:*:*:*:*
- cpe:2.3:a:316solutions:boost:6.x-1.0-rc4:*:*:*:*:*:*:*
- cpe:2.3:a:316solutions:boost:6.x-1.0-rc5:*:*:*:*:*:*:*
- cpe:2.3:a:316solutions:boost:6.x-1.0:rc5:*:*:*:*:*:*
- cpe:2.3:a:316solutions:boost:6.x-1.x-dev:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- drupal.org/node/592470nvdPatch
- drupal.org/node/592490nvdPatchVendor Advisory
- secunia.com/advisories/36925nvdVendor Advisory
- osvdb.org/58424nvd
- www.securityfocus.com/bid/36561nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/53553nvd
News mentions
0No linked articles in our index yet.