CVE-2007-5844
CVE-2007-5844 affects GuppY 4.6.3. A directory traversal flaw in inc/includes.inc allows remote attackers to include and execute arbitrary local files via .. in the selskin parameter to index.php. The issue can be leveraged for remote file inclusion by including inc/boxleft.inc and supplying a UR...