2 matches found
Remote file inclusion
PHP remote file inclusion vulnerability in modules/Discipline/StudentFieldBreakdown.php in Focus/SIS 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the FocusPath parameter, a different vector than CVE-2007-4806. NOTE: the provenance of this information is unknown...
CVE-2007-4806
CVE-2007-4806 affects Focus/SIS 1.0, in modules/Discipline/CategoryBreakdownTime.php. It is a PHP remote file inclusion vulnerability that lets an attacker supply a URL via the FocusPath parameter to execute arbitrary PHP code on the server, enabling potential full compromise. Public advisories a...