CVE-2007-2331
CVE-2007-2331 affects Shop-Script 2.0: PHP remote file inclusion via the lang_list parameter in cart.php, allowing an attacker to cause arbitrary PHP code execution by providing a URL. The root cause is improper handling of user-supplied input for remote file inclusion. Impact is partial confiden...