2 matches found
CVE-2009-3312
PHP remote file inclusion vulnerability in php/init.poll.php in phpPollScript 1.3 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a crafted URL in the includeclass parameter...
CVE-2009-3312
The CVE-2009-3312 entry describes a PHP remote file inclusion vulnerability in phpPollScript 1.3 and earlier. Root cause: when PHP register_globals is enabled, an attacker can craft a URL targeting the include_class parameter to cause php/init.poll.php to include a remote/local file, enabling arb...