CVE-2009-0701
Cybershade CMS 0.2b is affected by multiple PHP remote file inclusion flaws in index.php when register_globals is enabled. An attacker can cause arbitrary PHP code execution by supplying a URL in the THEME_header or THEME_footer parameters, leveraging the RFI condition. The CVE-2009-0701 entry on...