2 matches found
CVE-2007-2664
PHP remote file inclusion vulnerability in includes/common.php in Yaap 1.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the rootpath parameter, possibly related to the autoload function...
CVE-2007-2664
CVE-2007-2664 corresponds to a PHP remote file inclusion vulnerability in Yaap (versions 1.5 and earlier) affecting the includes/common.php component. The root_path parameter can be supplied via a URL to cause the application to include an external PHP file, potentially leading to arbitrary PHP c...