Vulnerabilities > Plohni > Advanced Comment System > 1.0

DATE	CVE	VULNERABILITY TITLE	RISK
2010-01-18	CVE-2009-4623	Code Injection vulnerability in Plohni Advanced Comment System 1.0 Multiple PHP remote file inclusion vulnerabilities in Advanced Comment System 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the ACS_path parameter to (1) index.php and (2) admin.php in advanced_comment_system/. network low complexity plohni CWE-94	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.