CVE-2007-1147
CVE-2007-1147 describes a PHP remote file inclusion in view.php of hbm, exploitable via the hbmpath parameter to cause arbitrary PHP code execution. The NVD entry confirms a NETWORK-exposed, low-complexity vector with no authentication and partial confidentiality/ integrity/ availability impact (...