CVE-2007-2573
PHPtree 1.3 is affected by CVE-2007-2573 via a remote file inclusion in plugin/HP_DEV/cms2.php, where an attacker can supply a URL in the s_dir parameter to execute arbitrary PHP code. The vulnerability arises from improper handling of the s_dir input, enabling code execution on the server. The a...