CVE-2009-3426
CVE-2009-3426 concerns a PHP remote file inclusion in MaxCMS 3.11.20b. The flaw is in includes/file_manager/special.php, where the fm_includes_special parameter can be controlled to include a remote PHP file, enabling arbitrary code execution on the server. Documented affected component: MaxCMS 3...