cve/CVE-2009-2161.md at master

0xMarcio/cve

Fork 0

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

809 B

Raw Permalink Blame History

CVE-2009-2161

Description

Directory traversal vulnerability in backend/admin-functions.php in TorrentTrader Classic 1.09, when used on a case-insensitive web site, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the ss_uri parameter, in conjunction with a modified component name.

POC

Reference

http://www.waraxe.us/advisory-74.html
https://www.exploit-db.com/exploits/8958

Github

No PoCs found on GitHub currently.

809 B Raw Permalink Blame History

CVE-2009-2161

Description

POC

Reference

Github

809 B

Raw Permalink Blame History