CVE-2009-2313

HIGH

7.5

CVSS Severity Score

EPSS Score0.1870%

EPSS Percentile34.86th

Published2009年7月2日

Last Modified2026年4月23日

Vulnerability Description

Directory traversal vulnerability in index.php in Jinzora Media Jukebox 2.8 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the name parameter.

Affected Platforms (CPE)

📦

Jinzora

<= 2.8

📦

Jinzora

= 0.1.1

📦

Jinzora

= 0.2

📦

Jinzora

= 0.3

📦

Jinzora

= 0.3

📦

Jinzora

= 0.3

📦

Jinzora

= 0.3.1

📦

Jinzora

= 0.4

📦

Jinzora

= 0.5

📦

Jinzora

= 0.6.2

📦

Jinzora

= 0.7

📦

Jinzora

= 0.8.1

📦

Jinzora

= 0.8.2

📦

Jinzora

= 0.9

📦

Jinzora

= 0.9.1

📦

Jinzora

= 0.9.2

📦

Jinzora

= 0.9.3

📦

Jinzora

= 0.9.4

📦

Jinzora

= 0.9.5

📦

Jinzora

= 1.0.1

📦

Jinzora

= 1.1

📦

Jinzora

= 2.0

📦

Jinzora

= 2.0

📦

Jinzora

= 2.0

📦

Jinzora

= 2.0

📦

Jinzora

= 2.0

📦

Jinzora

= 2.0.1

📦

Jinzora

= 2.1

📦

Jinzora

= 2.2

📦

Jinzora

= 2.3

📦

Jinzora

= 2.3.1

📦

Jinzora

= 2.3.2

📦

Jinzora

= 2.3.3

📦

Jinzora

= 2.3.4

📦

Jinzora

= 2.3.5

📦

Jinzora

= 2.3.6

📦

Jinzora

= 2.3.7

📦

Jinzora

= 2.5

📦

Jinzora

= 2.5.1

📦

Jinzora

= 2.6

📦

Jinzora

= 2.6.1

📦

Jinzora

= 2.7

📦

Jinzora

= 2.7.5

References & Advisories

🔗 http://www.exploit-db.com/exploits/8278

Vulnerability Description

Affected Platforms (CPE)

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

Jinzora

References & Advisories

関連する脆弱性情報