2 matches found
CVE-2007-3270
PHP remote file inclusion vulnerability in Includes/global.inc.php in phpMyInventory 2.8 allows remote attackers to execute arbitrary PHP code via a URL in the strIncludePrefix parameter...
CVE-2007-3270
CVE-2007-3270 describes a PHP remote file inclusion vulnerability in the phpMyInventory 2.8 codebase. The flaw resides in Includes/global.inc.php, where the strIncludePrefix parameter can be controlled via a URL, allowing an attacker to cause the application to include and execute arbitrary PHP c...