cvelist/2009/0xxx/CVE-2009-0673.json

{
    "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2009-0673",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "n/a",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "n/a"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "n/a"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "Eval injection vulnerability in the Custom Fields feature in the Your Account module in Raven Web Services RavenNuke 2.30 allows remote authenticated administrators to execute arbitrary PHP code via the ID Field Name box in a yaCustomFields action to admin.php."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "n/a"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "33787",
                "refsource": "BID",
                "url": "http://www.securityfocus.com/bid/33787"
            },
            {
                "name": "http://ravenphpscripts.com/postt17156.html",
                "refsource": "CONFIRM",
                "url": "http://ravenphpscripts.com/postt17156.html"
            },
            {
                "name": "ravennuke-admin-code-execution(48790)",
                "refsource": "XF",
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48790"
            },
            {
                "name": "20090216 [waraxe-2009-SA#072] - Multiple Vulnerabilities in RavenNuke 2.3.0",
                "refsource": "BUGTRAQ",
                "url": "http://www.securityfocus.com/archive/1/500988/100/0/threaded"
            },
            {
                "name": "8068",
                "refsource": "EXPLOIT-DB",
                "url": "https://www.exploit-db.com/exploits/8068"
            },
            {
                "name": "http://www.waraxe.us/advisory-72.html",
                "refsource": "MISC",
                "url": "http://www.waraxe.us/advisory-72.html"
            }
        ]
    }
}
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`{`
"-Synchronized-Data." 2019-03-18 03:11:59 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "cve@mitre.org",`
			`"ID": "CVE-2009-0673",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "n/a",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "n/a"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "n/a"`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`{`
"-Synchronized-Data." 2019-03-18 03:11:59 +00:00			`"lang": "eng",`
			`"value": "Eval injection vulnerability in the Custom Fields feature in the Your Account module in Raven Web Services RavenNuke 2.30 allows remote authenticated administrators to execute arbitrary PHP code via the ID Field Name box in a yaCustomFields action to admin.php."`
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`}`
"-Synchronized-Data." 2019-03-18 03:11:59 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "n/a"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "33787",`
			`"refsource": "BID",`
			`"url": "http://www.securityfocus.com/bid/33787"`
			`},`
			`{`
			`"name": "http://ravenphpscripts.com/postt17156.html",`
			`"refsource": "CONFIRM",`
			`"url": "http://ravenphpscripts.com/postt17156.html"`
			`},`
			`{`
			`"name": "ravennuke-admin-code-execution(48790)",`
			`"refsource": "XF",`
			`"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48790"`
			`},`
			`{`
			`"name": "20090216 [waraxe-2009-SA#072] - Multiple Vulnerabilities in RavenNuke 2.3.0",`
			`"refsource": "BUGTRAQ",`
			`"url": "http://www.securityfocus.com/archive/1/500988/100/0/threaded"`
			`},`
			`{`
			`"name": "8068",`
			`"refsource": "EXPLOIT-DB",`
			`"url": "https://www.exploit-db.com/exploits/8068"`
			`},`
			`{`
			`"name": "http://www.waraxe.us/advisory-72.html",`
			`"refsource": "MISC",`
			`"url": "http://www.waraxe.us/advisory-72.html"`
			`}`
			`]`
			`}`
			`}`