Remote file inclusion

2009-07-0815:30:00

PRIOn knowledge base

www.prio-n.com

8 High

AI Score

Confidence

Low

0.014 Low

EPSS

Percentile

86.5%

JSON

PHP remote file inclusion vulnerability in formmailer.admin.inc.php in Jax FormMailer 3.0.0 allows remote attackers to execute arbitrary PHP code via a URL in the BASE_DIR[jax_formmailer] parameter.

CPENameOperatorVersion
jax_formmailereq3.0.0

CPE	Name	Operator	Version
	jax_formmailer	eq	3.0.0

References

exchange.xforce.ibmcloud.com/vulnerabilities/51443

www.exploit-db.com/exploits/9051