CVE-2007-2891

Multiple PHP remote file inclusion vulnerabilities in FirmWorX 0.1.2 allow remote attackers to execute arbitrary PHP code via a URL in the 1 bankdataroot parameter to modules/bank/includes/design/main.inc.php, or the 2 fmdataroot parameter to a includes/config/master.inc.php or b...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in FirmWorX 0.1.2 allow remote attackers to execute arbitrary PHP code via a URL in the 1 bankdataroot parameter to modules/bank/includes/design/main.inc.php, or the 2 fmdataroot parameter to a includes/config/master.inc.php or b...

CVE-2007-2891

CVE-2007-2891 affects FirmWorX 0.1.2 with multiple PHP remote file inclusion vulnerabilities. An attacker can cause arbitrary PHP code execution by supplying crafted URLs via (1) bank_data[root] to modules/bank/includes/design/main.inc.php or (2) fm_data[root] to (a) includes/config/master.inc.ph...

CVE-2007-2891

Multiple PHP remote file inclusion vulnerabilities in FirmWorX 0.1.2 allow remote attackers to execute arbitrary PHP code via a URL in the 1 bankdataroot parameter to modules/bank/includes/design/main.inc.php, or the 2 fmdataroot parameter to a includes/config/master.inc.php or b...