CVE-2007-1628P3CRITICALCVSS 9.3PoCv0.13·v0.14+1 more2007-03-23
CVE-2007-1628 [CRITICAL] CVE-2007-1628: Multiple PHP remote file inclusion vulnerabilities in Study planner (Studiewijzer) 0.15 and earlier,
Multiple PHP remote file inclusion vulnerabilities in Study planner (Studiewijzer) 0.15 and earlier, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the SPL_CFG[dirroot] parameter to (1) service.alert.inc.php or (2) settings.ses.php in inc/; (3) db/mysql/db.inc.php; (4) integration/shortstat/configuration.
nvd