CVE-2007-4950
PHP remote file inclusion vulnerability in form/dbform/employee.php in PHPortal 0.2.7 allows remote attackers to execute arbitrary PHP code via a URL in the DOCUMENTROOT parameter. NOTE: this issue is disputed by CVE, since DOCUMENTROOT cannot be modified by an attacker...