CVE-2007-1148

PHP remote file inclusion vulnerability in install/index.php in LoveCMS 1.4 allows remote attackers to execute arbitrary PHP code via a URL in the step parameter.

Date published : 2007-02-27

http://www.securityfocus.com/bid/22675

http://www.securityfocus.com/archive/1/460917/100/0/threaded