CVE-2010-2132
Open Education System (OES) 0.1 beta is affected by multiple PHP remote file inclusion vulnerabilities. The issue allows an attacker to cause remote PHP code execution by supplying a crafted URL to the CONF_INCLUDE_PATH parameter in specific scripts: forum/admin.php and plotgraph/index.php under ...