CVE-2007-4325
Gaestebuch 1.5 is affected by a PHP remote file inclusion in index.php triggered by a URL in the config[root_ordner] parameter. The underlying issue is that a user-supplied path is used in a context that allows inclusion of arbitrary PHP code, enabling remote code execution. The vulnerability aff...