2 matches found
CVE-2007-2307
PHP remote file inclusion vulnerability in engine/engine.inc.php in WebKalk2 1.9.0 allows remote attackers to execute arbitrary PHP code via a URL in the absolutepath parameter...
CVE-2007-2307
The CVE-2007-2307 entry concerns WebKalk2 (vendor not specified) version 1.9.0, where the PHP file engine/engine.inc.php is vulnerable to remote file inclusion. The underlying issue is an improper handling of the absolute_path parameter, allowing an attacker to cause arbitrary PHP code execution ...