Ezpx Photoblog Security Vulnerabilities - January

cve

CVE-2010-2341

PHP remote file inclusion vulnerability in system/application/views/public/commentform.php in EZPX Photoblog 1.2 beta allows remote attackers to execute arbitrary PHP code via a URL in the tpl_base_dir parameter.

7.8AI Score

0.024EPSS

2010-06-18 09:30 PM