RSS   Vulnerabilities for 'Pointcomma'   RSS

2009-12-07
 
CVE-2009-4220

CWE-94
 

 
PHP remote file inclusion vulnerability in includes/classes/pctemplate.php in PointComma 3.8b2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the pcConfig[smartyPath] parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top