CVE-2006-4898
GuanxiCRM 0.9.1 and earlier is affected by a PHP remote file inclusion via include/phpxd/phpXD.php. An attacker can supply a URL in appconf[rootpath] to execute arbitrary PHP code. The CVSS metrics (from NVD) indicate high impact with partial confidentiality, integrity, and availability. No remed...