CVE-2009-4747 | SynScan

Vulnerability Database

290,206

Total vulnerabilities in the database

CVE-2009-4747

PHP remote file inclusion vulnerability in public/code/cp_html2xhtmlbasic.php in All In One Control Panel (AIOCP) 1.4.001 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter, a different vector than CVE-2009-3220.

Published: Mar 26, 2010
Updated: Apr 13, 2023
CVE: CVE-2009-4747
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-94

Affected Software
References

Software	From	Fixed in
tecnick / aiocp	1.4.001	1.4.001.x