CVE-2009-0677 - Vulnerability Details - OpenCVE

avatarlist.php in the Your Account module, reached through modules.php, in Raven Web Services RavenNuke 2.30 allows remote authenticated users to execute arbitrary code via PHP sequences in an element of the replacements array, which is processed by the preg_replace function with the eval switch, as specified in an element of the patterns array.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.09815.

Key SSVC decision points have not yet been added.

Vendors	Products
Ravenphpscripts	Ravennuke

Configuration 1 [-]

cpe:2.3:a:ravenphpscripts:ravennuke:2.30:*:*:*:*:*:*:*

No data.

No data.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://ravenphpscripts.com/postt17156.html&sid=12d1201371612260a42fa846ebce7bad
http://secunia.com/advisories/33928
http://www.osvdb.org/52007
http://www.securityfocus.com/archive/1/500988/100/0/threaded
http://www.securityfocus.com/bid/33787
http://www.waraxe.us/advisory-72.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/48789
https://www.exploit-db.com/exploits/8068

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2009-02-22T22:00:00

Updated: 2024-08-07T04:40:05.334Z

Reserved: 2009-02-22T00:00:00

Link: CVE-2009-0677

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2009-02-22T22:30:00.983

Modified: 2025-04-09T00:30:58.490

Link: CVE-2009-0677

Redhat

No data.

OpenCVE Enrichment

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2009-02-16T00:00:00", "descriptions": [{"lang": "en", "value": "avatarlist.php in the Your Account module, reached through modules.php, in Raven Web Services RavenNuke 2.30 allows remote authenticated users to execute arbitrary code via PHP sequences in an element of the replacements array, which is processed by the preg_replace function with the eval switch, as specified in an element of the patterns array."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-10T18:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "33787", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/33787"}, {"name": "33928", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/33928"}, {"name": "52007", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/52007"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://ravenphpscripts.com/postt17156.html&sid=12d1201371612260a42fa846ebce7bad"}, {"name": "20090216 [waraxe-2009-SA#072] - Multiple Vulnerabilities in RavenNuke 2.3.0", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/500988/100/0/threaded"}, {"name": "8068", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/8068"}, {"tags": ["x_refsource_MISC"], "url": "http://www.waraxe.us/advisory-72.html"}, {"name": "ravennuke-avatarlist-code-execution(48789)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48789"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2009-0677", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "avatarlist.php in the Your Account module, reached through modules.php, in Raven Web Services RavenNuke 2.30 allows remote authenticated users to execute arbitrary code via PHP sequences in an element of the replacements array, which is processed by the preg_replace function with the eval switch, as specified in an element of the patterns array."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "33787", "refsource": "BID", "url": "http://www.securityfocus.com/bid/33787"}, {"name": "33928", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/33928"}, {"name": "52007", "refsource": "OSVDB", "url": "http://www.osvdb.org/52007"}, {"name": "http://ravenphpscripts.com/postt17156.html&sid=12d1201371612260a42fa846ebce7bad", "refsource": "CONFIRM", "url": "http://ravenphpscripts.com/postt17156.html&sid=12d1201371612260a42fa846ebce7bad"}, {"name": "20090216 [waraxe-2009-SA#072] - Multiple Vulnerabilities in RavenNuke 2.3.0", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/500988/100/0/threaded"}, {"name": "8068", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/8068"}, {"name": "http://www.waraxe.us/advisory-72.html", "refsource": "MISC", "url": "http://www.waraxe.us/advisory-72.html"}, {"name": "ravennuke-avatarlist-code-execution(48789)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48789"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T04:40:05.334Z"}, "title": "CVE Program Container", "references": [{"name": "33787", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/33787"}, {"name": "33928", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/33928"}, {"name": "52007", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/52007"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://ravenphpscripts.com/postt17156.html&sid=12d1201371612260a42fa846ebce7bad"}, {"name": "20090216 [waraxe-2009-SA#072] - Multiple Vulnerabilities in RavenNuke 2.3.0", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/500988/100/0/threaded"}, {"name": "8068", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "https://www.exploit-db.com/exploits/8068"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.waraxe.us/advisory-72.html"}, {"name": "ravennuke-avatarlist-code-execution(48789)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48789"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2009-0677", "datePublished": "2009-02-22T22:00:00", "dateReserved": "2009-02-22T00:00:00", "dateUpdated": "2024-08-07T04:40:05.334Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ravenphpscripts:ravennuke:2.30:*:*:*:*:*:*:*", "matchCriteriaId": "24561E2B-3481-4E0C-8115-14A7FBB2F176", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "avatarlist.php in the Your Account module, reached through modules.php, in Raven Web Services RavenNuke 2.30 allows remote authenticated users to execute arbitrary code via PHP sequences in an element of the replacements array, which is processed by the preg_replace function with the eval switch, as specified in an element of the patterns array."}, {"lang": "es", "value": "avatarlist.php en el m\u00f3dulo Your Account, alcanzado a traves de modules.php, en Raven Web Services RavenNuke v2.30 lo que permite a usuarios remotos autentificados ejecutar codigo a su eleccion a traves de secuencias PHP en un elemento del array de reemplazo, lo que es procesado por la funcion preg_replace con el interruptor de evaluacion, como se especifica en un elemento del array de patrones."}], "id": "CVE-2009-0677", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2009-02-22T22:30:00.983", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://ravenphpscripts.com/postt17156.html&sid=12d1201371612260a42fa846ebce7bad"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/33928"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/52007"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/500988/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/33787"}, {"source": "cve@mitre.org", "url": "http://www.waraxe.us/advisory-72.html"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48789"}, {"source": "cve@mitre.org", "url": "https://www.exploit-db.com/exploits/8068"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://ravenphpscripts.com/postt17156.html&sid=12d1201371612260a42fa846ebce7bad"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/33928"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/52007"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/500988/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/33787"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.waraxe.us/advisory-72.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48789"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.exploit-db.com/exploits/8068"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "nvd@nist.gov", "type": "Primary"}]}