CVE-2007-2457

PHP remote file inclusion vulnerability in resources/includes/class.Smarty.php in Pixaria Gallery before 1.4.3 allows remote attackers to execute arbitrary PHP code via a URL in the cfg[sys][base_path] parameter.

Date published : 2007-05-02

http://www.securityfocus.com/bid/23489

http://www.securityfocus.com/archive/1/465847/100/200/threaded