CVE-2010-2005

CVE-2010-2005 affects DataLife Engine 8.3 with multiple PHP remote file inclusion (RFI) vulnerabilities that allow an attacker to execute arbitrary PHP code. The affected vectors are: (1) selected_language to engine/inc/include/init.php, (2) config[langs] to engine/inc/help.php, (3) config[lang] ...