Unrated severityNVD Advisory· Published Jul 8, 2009· Updated Apr 23, 2026
CVE-2009-2378
CVE-2009-2378
Description
PHP remote file inclusion vulnerability in formmailer.admin.inc.php in Jax FormMailer 3.0.0 allows remote attackers to execute arbitrary PHP code via a URL in the BASE_DIR[jax_formmailer] parameter.
Affected products
1- cpe:2.3:a:jtr:jax_formmailer:3.0.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.