NuytsTech Security

CVE-2007-2558

by ·

** DISPUTED **

PHP remote file inclusion vulnerability in index.php in phpFullAnnu CMS (pfa CMS) 6.0 allows remote attackers to execute arbitrary PHP code via a URL in the repinc parameter. NOTE: CVE disputes this issue since $repinc is set to a constant value before use.

Date published : 2007-05-09

http://www.securityfocus.com/archive/1/467827/100/0/threaded

http://osvdb.org/36167

Tags: