CVE-2007-5157

PHP remote file inclusion vulnerability in phfito-post.php in Alex Kocharin PHP Fidonet Tosser (PhFiTo) 1.3.0 in phpFidoNode allows remote attackers to execute arbitrary PHP code via a URL in the SRC_PATH parameter to phfito-post.

Date published : 2007-09-30

http://www.securityfocus.com/bid/25839

https://www.exploit-db.com/exploits/4464