CVE-2009-2222

PHP-I-BOARD <= 1.2 - Path Traversal via Directory Traversal Sequences

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in PHP-I-BOARD 1.2 and earlier allows remote attackers to read arbitrary files via directory traversal sequences in unspecified vectors, probably related to mail.

References (4)

Core 4
Core References
Vendor Advisory x_refsource_confirm
http://php.s3.to/bbs/bbs8.php
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/35532
Third Party Advisory third-party-advisory x_refsource_jvndb
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000046.html
Third Party Advisory third-party-advisory x_refsource_jvn
http://jvn.jp/jp/JVN32788272/index.html

Scores

EPSS 0.0155
EPSS Percentile 72.1%

Details

CWE
CWE-22
Status published
Products (3)
php.s3/php-i-board 1.0
php.s3/php-i-board 1.1
php.s3/php-i-board < 1.2
Published Jun 26, 2009
Tracked Since Feb 18, 2026