2 matches found
CVE-2007-4807
Multiple PHP remote file inclusion vulnerabilities in Focus/SIS 2.2 allow remote attackers to execute arbitrary PHP code via a URL in the staticpath parameter to 1 modules/Discipline/CategoryBreakdownTime.php or 2 modules/Discipline/StudentFieldBreakdown.php...
CVE-2007-4807
CVE-2007-4807 is a remote file inclusion vulnerability affecting Focus SIS 2.2. The issue arises from unsanitized input in the staticpath parameter, allowing an attacker to supply a URL to (1) modules/Discipline/CategoryBreakdownTime.php or (2) modules/Discipline/StudentFieldBreakdown.php and exe...