Vortex Portal : Security Vulnerabilities, CVEs, CVSS score >= 5
Multiple PHP remote file inclusion vulnerabilities in Vortex Portal 1.0.42 allow remote attackers to execute arbitrary PHP code via a URL in the cfgProgDir parameter to (1) admincp/auth/secure.php or (2) admincp/auth/checklogin.php.
Max CVSS
6.8
EPSS Score
7.84%
Published
2007-11-06
Updated
2017-09-29
content.php in Vortex Portal allows remote attackers to obtain sensitive information via an invalid act parameter, which leaks the full pathname in a PHP error message.
Max CVSS
5.0
EPSS Score
0.55%
Published
2005-05-02
Updated
2017-07-11
PHP remote file include vulnerability in (1) content.php and (2) index.php for Vortex Portal allows remote attackers to execute arbitrary PHP code via a URL in the act parameter.
Max CVSS
7.5
EPSS Score
13.19%
Published
2005-05-02
Updated
2017-07-11
3 vulnerabilities found