Vulnerability Details : CVE-2009-4143
PHP before 5.2.12 does not properly handle session data, which has unspecified impact and attack vectors related to (1) interrupt corruption of the SESSION superglobal array and (2) the session.save_path directive.
Threat overview for CVE-2009-4143
Top countries where our scanners detected CVE-2009-4143
Top open port discovered on systems with this issue
80
IPs affected by CVE-2009-4143 48,442
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2009-4143!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2009-4143
1.46%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 85 %
Percentile, the proportion of vulnerabilities that are scored at or less