CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Raphael Mazoyer: >> Pointcomma >> 3.53 Security Vulnerabilities

CVE-2009-4220

PHP remote file inclusion vulnerability in includes/classes/pctemplate.php in PointComma 3.8b2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the pcConfig[smartyPath] parameter.

CVSS Score

7.5

EPSS Score

0.009

Published

2009-12-07

Page 1

Vulnerabilities

Vulnerable Software

Raphael Mazoyer: >> Pointcomma >> 3.53 Security Vulnerabilities

Products

Pricing

Contact Us