CVE-2002-2106

PHP remote file inclusion vulnerability in WikkiTikkiTavi before 0.21 allows remote attackers to execute arbitrary PHP code via the TemplateDir variable, as demonstrated using conflict.php.

Date published : 2005-08-05

http://www.securityfocus.com/bid/3946

http://sourceforge.net/mailarchive/message.php?msg_id=185752