CVE-2009-1248

2009-04-06T16:30:00
ID CVE-2009-1248
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:34:00

Description

Multiple PHP remote file inclusion vulnerabilities in Acute Control Panel 1.0.0 allow remote attackers to execute arbitrary PHP code via a URL in the theme_directory parameter to (1) container.php and (2) header.php in themes/.