CVE-2009-4779
CVE-2009-4779 affects NukeHall 0.3 and earlier. The vulnerability is a PHP remote file inclusion in the spaw_root parameter to admin/modules/ (blocks.php, messages.php, stories.php), allowing an attacker to execute arbitrary PHP code. The issue is caused by unsafely including a URL supplied by th...