Phportal

phportal

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Phportal

phportal

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2009-2117 1Phportal 1Phportal Apr 23, 2026 Jun 18, 2009 N/A· v4 N/A· v3 7.5 HIGH· v2 uye_paneli.php in phPortal 1.0 allows remote attackers to bypass authentication and obtain administrative access by setting the kulladi cookie to a valid username.
CVE-2007-4950 1Phportal 1Phportal Apr 23, 2026 Sep 18, 2007 N/A· v4 N/A· v3 6.8 MEDIUM· v2 PHP remote file inclusion vulnerability in form/db_form/employee.php in PHPortal 0.2.7 allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENT_ROOT parameter. NOTE: this issue is disputed by CVE,...Show more PHP remote file inclusion vulnerability in form/db_form/employee.php in PHPortal 0.2.7 allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENT_ROOT parameter. NOTE: this issue is disputed by CVE, since DOCUMENT_ROOT cannot be modified by an attackerShow less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2009-2117

1Phportal

Apr 23, 2026

Jun 18, 2009

N/A· v4

N/A· v3

7.5 HIGH· v2

uye_paneli.php in phPortal 1.0 allows remote attackers to bypass authentication and obtain administrative access by setting the kulladi cookie to a valid username.

CVE-2007-4950

1Phportal

Apr 23, 2026

Sep 18, 2007

N/A· v4

N/A· v3

6.8 MEDIUM· v2

PHP remote file inclusion vulnerability in form/db_form/employee.php in PHPortal 0.2.7 allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENT_ROOT parameter. NOTE: this issue is disputed by CVE,...Show more