CVE-2007-3237

CVE-2007-3237 and related entries describe a PHP remote file inclusion in the spaw/spaw_control.class.php handler used by XOOPS modules (TinyContent 1.5, WiwiMod 0.4, XT-Conteudo). The vulnerability allows an attacker to cause arbitrary PHP code execution by supplying a crafted URL in the spaw_ro...