Home > Vulnerability Database > CVE-2009-3890

Mend.io Vulnerability Database

CVE-2009-3890

Good to know:

Date: November 17, 2009

Unrestricted file upload vulnerability in the wp_check_filetype function in wp-includes/functions.php in WordPress before 2.8.6, when a certain configuration of the mod_mime module in the Apache HTTP Server is enabled, allows remote authenticated users to execute arbitrary code by posting an attachment with a multiple-extension filename, and then accessing this attachment via a direct request to a wp-content/uploads/ pathname, as demonstrated by a .php.jpg filename.

Language: C

Severity Score

5.0

Related Resources (12)

Url: https://nvd.nist.gov/vuln/detail/CVE-2009-3890

Url: http://www.osvdb.org/59958

Url: http://archives.neohapsis.com/archives/fulldisclosure/2009-11/0142.html

Url: http://wordpress.org/development/2009/11/wordpress-2-8-6-security-release/

Url: http://www.openwall.com/lists/oss-security/2009/11/15/3

Url: http://archives.neohapsis.com/archives/fulldisclosure/2009-11/0149.html

Url: http://www.openwall.com/lists/oss-security/2009/11/16/1

Url: http://www.openwall.com/lists/oss-security/2009/11/15/2

Url: http://core.trac.wordpress.org/ticket/11122

Url: http://secunia.com/advisories/37332

Url: http://archives.neohapsis.com/archives/fulldisclosure/2009-11/0153.html

Url: https://www.mend.io/vulnerability-database/CVE-2009-3890

Severity Score

5.0

Weakness Type (CWE)

Improper Control of Generation of Code ('Code Injection')

CWE-94

Top Fix

Upgrade Version

Upgrade to version mindgruve/wordpress - 2.8.6;mindgruve/wordpress - 2.8.3;medreleaf/wordpress - 2.3.x-dev;medreleaf/wordpress - 2.8.x-dev;medreleaf/wordpress - 2.5.x-dev;medreleaf/wordpress - 2.2.x-dev;medreleaf/wordpress - 2.8.6;johnpbloch/wordpress-core - 2.7.1;johnpbloch/wordpress-core - 2.6.1;kanopi/wordpress-core - 2.2;kanopi/wordpress-core - 2.8.1;wplib/wordpress - 2.8.6;vocativ/wordpress - 2.5.x-dev;vocativ/wordpress - 2.8.x-dev;vocativ/wordpress - 2.8.6;vocativ/wordpress - 2.2.x-dev;vocativ/wordpress - 2.3.x-dev;wp-extended/wordpress - 2.6.1;wp-extended/wordpress - 2.7.1;wp-extended/wordpress - 2.1.1;inpsyde/wordpress-dev - 2.5.x-dev;inpsyde/wordpress-dev - 2.8.6;inpsyde/wordpress-dev - 2.8.x-dev;inpsyde/wordpress-dev - 2.3.x-dev;inpsyde/wordpress-dev - 2.2.x-dev;cyruscollier/wordpress-develop - 2.8.6;dotcra/wprdpress - 2.8.6;jesseberkhof/wordpress-fork - 2.8.6;humanit-se/wordpress-sv - v2.8.6;radialfunction/unicourt-blog - 2.8.6;openify/wordpress-composer - 2.8.6

Learn More

CVSS v3.1

Base Score:	5.0
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	HIGH
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	6.0
Access Vector (AV):	NETWORK
Access Complexity (AC):	MEDIUM
Authentication (AU):	SINGLE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2009-3890

Good to know:

Date: November 17, 2009

Language: C

Severity Score

Related Resources (12)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

CVSS v2

Do you need more information?