CVE-2007-5175
CVE-2007-5175 : PHP remote file inclusion in actSite 1.991 Beta (lib/base.php) allows an attacker to execute arbitrary PHP code via a URL in the BaseCfg[BaseDir] parameter. Root cause: unsafely using a user-controlled file path in an include operation. Impact: remote code execution on the affecte...