CVE-2007-4886
The CVE-2007-4886 entry describes an incomplete blacklist vulnerability in AuraCMS (index.php) affecting 1.x and likely 2.x, allowing remote PHP code execution via the pilih parameter when using non-http URLs (UNC share, ftp, ftps, or ssh2.sftp). The root cause is PHP remote file inclusion being ...