CVE-2007-0497
CVE-2007-0497 describes a PHP remote file inclusion in Upload-Service 1.0. The vulnerability is in upload/top.php when register_globals is enabled, allowing a remote attacker to execute arbitrary PHP code by supplying a URL in the maindir parameter. The CVSS-base score is 6.8 (Medium) with networ...