CVE-2009-4700
SkaDate Online Dating Software - Path Traversal via Layout Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2009-4700. PoCs published by Moudi.
AI-analyzed exploit summary This is a writeup detailing multiple vulnerabilities (RFI, LFI, and XSS) in SkaDate Dating software. It provides example URLs for exploitation but does not include functional exploit code.
Description
Directory traversal vulnerability in index.php in SkaDate Dating allows remote attackers to read arbitrary files via a .. (dot dot) in the layout parameter.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Moudi · textwebappsphp
https://www.exploit-db.com/exploits/9260
This is a writeup detailing multiple vulnerabilities (RFI, LFI, and XSS) in SkaDate Dating software. It provides example URLs for exploitation but does not include functional exploit code.
Classification
Writeup 90%
Attack Type
Xss | Info Leak
Complexity
Trivial
Reliability
Theoretical
Target:
SkaDate Dating
No auth needed
Prerequisites:
Access to the target web application
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (5)
Core 5
Core References
Exploit vdb-entry
x_refsource_osvdb
http://osvdb.org/56543
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/35813
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/52003
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/35997
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/9260
Scores
EPSS
0.0277
EPSS Percentile
84.4%
Details
CWE
CWE-22
Status
published
Products (4)
skadate/skadate_online_dating_software
skadate/skadate_online_dating_software
5.0
skadate/skadate_online_dating_software
6.0
skadate/skadate_online_dating_software
6.482
Published
Mar 15, 2010
Tracked Since
Feb 18, 2026