Unrated severityNVD Advisory· Published Dec 28, 2009· Updated Jun 16, 2026
CVE-2009-4426
CVE-2009-4426
Description
Multiple directory traversal vulnerabilities in Ignition 1.2, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the blog parameter to (1) comment.php and (2) view.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
6- osvdb.org/61225nvdExploit
- osvdb.org/61226nvdExploit
- packetstormsecurity.org/0912-exploits/ignition-lfi.txtnvdExploit
- www.exploit-db.com/exploits/10569nvdExploit
- secunia.com/advisories/37836nvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/54940nvd
News mentions
0No linked articles in our index yet.