2 matches found
CVE-2007-5994
PHP remote file inclusion vulnerability in checknoimage.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the configpathsrcinclude parameter...
CVE-2007-5994
CVE-2007-5994 describes a PHP remote file inclusion in Fritz Berger’s yet another php photo album - next generation (yappa-ng) 2.3.2. The flaw occurs in check_noimage.php when an attacker supplies a URL in the config[path_src_include] parameter, allowing arbitrary PHP code execution on the affect...