Vulnerability Details CVE-2009-2262
PHP remote file inclusion vulnerability in install/di.php in AjaxPortal 3.0 allows remote attackers to execute arbitrary PHP code via a URL in the pathtoserverdata parameter. NOTE: the installation instructions specify deleting the install/ folder.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 65.7%
CVSS Severity
CVSS v2 Score 7.5
Products affected by CVE-2009-2262
-
cpe:2.3:a:myiosoft:ajaxportal:3.0