VYPR
Unrated severityNVD Advisory· Published Aug 25, 2010· Updated Jun 16, 2026

CVE-2009-4986

CVE-2009-4986

Description

Directory traversal vulnerability in index.php in In-Portal 4.3.1, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the env parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:in-portal:in-portal:4.3.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:in-portal:in-portal:4.3.1:*:*:*:*:*:*:*
    • (no CPE)range: =4.3.1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.