CVE-2007-5840
The CVE-2007-5840 entry concerns SyndeoCMS 2.5.01 (Fred Stuurman) with a PHP remote file inclusion flaw in starnet/themes/c-sky/main.inc.php. The underlying issue is an insecure cmsdir parameter that allows including a URL, enabling remote attackers to execute arbitrary PHP code. This vector is d...