CVE-2009-2224

EPSS 0.16% · P37 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-2224

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Directory traversal vulnerability in ang/shared/flags.php in AN Guestbook 0.7.8, when register_globals is enabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the g_lang parameter.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

AN Guestbook 'flags.php' 目录遍历漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

AN Guestbook 0.7.8版本的ang/shared/flags.php中存在目录遍历漏洞,当register_globals被激活时,远程攻击者可以借助g_lang参数中的一个".."，读取任意文件。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-2224

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-2224

请登录查看更多情报信息。

http://www.exploit-db.com/exploits/9013exploitx_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/35486vdb-entryx_refsource_BID
http://www.attrition.org/pipermail/vim/2009-June/002196.htmlmailing-listx_refsource_VIM
https://nvd.nist.gov/vuln/detail/CVE-2009-2224

Same Patch Batch · n/a · 2009-06-26 · 17 CVEs total

CVE-2009-1394		Motorola Timbuktu Pro PlughNTCommand命名管道远程栈溢出漏洞
CVE-2009-1628		Unisys Business Information Server远程栈溢出漏洞
CVE-2009-1887		Red Hat Enterprise Linux 数字错误漏洞
CVE-2009-2227		B Labs Bopup Communication Server远程栈缓冲区溢出漏洞
CVE-2009-2228		Kasseler CMS engine.php跨站脚本攻击漏洞
CVE-2009-2229		Kasseler CMS engine.php目录遍历漏洞
CVE-2009-2230		MyBB inc/datahandlers/user.php birthdayprivacy参数SQL注入漏洞
CVE-2009-2231		MIDAS 'MIDAS cookie'安全绕过漏洞
CVE-2009-2232		Softbiz Banner Ad Management Script "image.php" SQL注入漏洞
CVE-2009-2233		AWScripts.com Gallery Search Engine 管理界面安全绕过和权限提升漏洞
CVE-2009-2220		Tribiq CMS 多个目录遍历漏洞
CVE-2009-2221		Php.S3 PHP-I-BOARD跨站脚本攻击漏洞
CVE-2009-2222		Php.S3 PHP-I-BOARD目录遍历漏洞
CVE-2009-2223		teozkr lightopencms "locms/smarty.php" 目录遍历漏洞
CVE-2009-2225		SureThing CD/DVD Labeler 播放列表文件栈缓冲区溢出漏洞
CVE-2009-2226		Php.S3 Let's PHP! Tree BBS跨站脚本攻击漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-2224

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2009-2224

I. Basic Information for CVE-2009-2224

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-2224

III. Intelligence Information for CVE-2009-2224

Same Patch Batch · n/a · 2009-06-26 · 17 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2009-2224

Leave a comment