Vulnerabilities (CVE)

Filtered by vendor Myiosoft Subscribe
Filtered by product Ajaxportal
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-2262 1 Myiosoft 1 Ajaxportal 2024-11-21 7.5 HIGH N/A
PHP remote file inclusion vulnerability in install/di.php in AjaxPortal 3.0 allows remote attackers to execute arbitrary PHP code via a URL in the pathtoserverdata parameter. NOTE: the installation instructions specify deleting the install/ folder.
CVE-2009-1509 1 Myiosoft 1 Ajaxportal 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in ajaxp_backend.php in MyioSoft AjaxPortal 3.0 allows remote attackers to execute arbitrary SQL commands via the page parameter.