PHP remote file inclusion vulnerability in previewtheme.php in Flipsource Flip 2.01-final 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the inc_path parameter.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Flip | Flipsource | * | 2.01-final_1.0 (including) |
References
- http://osvdb.org/35748
- http://www.securityfocus.com/bid/22385
- http://www.vupen.com/english/advisories/2007/0476
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32174
- https://www.exploit-db.com/exploits/3266
- http://osvdb.org/35748
- http://www.securityfocus.com/bid/22385
- http://www.vupen.com/english/advisories/2007/0476
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32174
- https://www.exploit-db.com/exploits/3266