CVE-2007-2664

2007-05-14T23:19:00
ID CVE-2007-2664
Type cve
Reporter cve@mitre.org
Modified 2017-10-11T01:32:00

Description

PHP remote file inclusion vulnerability in includes/common.php in Yaap 1.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the root_path parameter, possibly related to the __autoload function.