CVE-2007-4935
PHPFFL 1.24 contains multiple remote file inclusion vulnerabilities that allow an attacker to execute arbitrary PHP code by supplying a URL to the PHPFFL_FILE_ROOT parameter on several pages (admin.php, custom_pages.php, draft.php, etc.). The vulnerabilities cover both general pages and specific ...