Unrated severityNVD Advisory· Published Sep 23, 2009· Updated Jun 16, 2026
CVE-2009-3312
CVE-2009-3312
Description
PHP remote file inclusion vulnerability in php/init.poll.php in phpPollScript 1.3 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a crafted URL in the include_class parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=1.3
Patches
Vulnerability mechanics
References
5- secunia.com/advisories/36730nvdVendor Advisory
- www.vupen.com/english/advisories/2009/2686nvdVendor Advisory
- osvdb.org/58181nvd
- www.exploit-db.com/exploits/9703nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/53316nvd
News mentions
0No linked articles in our index yet.