CVE-2007-0150
Multiple PHP remote file inclusion vulnerabilities in index.php in Dayfox Blog allow remote attackers to execute arbitrary PHP code via a URL in the (1) page, (2) subject, and (3) q parameters.
Date published : 2007-01-09
http://www.securityfocus.com/archive/1/456212/100/0/threaded