CVE-2001-1297 Information

Description

PHP remote file inclusion vulnerability in Actionpoll PHP script before 1.1.2 allows remote attackers to execute arbitrary PHP code via a URL in the includedir parameter.

Reference

http://archives.neohapsis.com/archives/bugtraq/2001-10/0012.html http://sourceforge.net/project/shownotes.php?release_id=58331 http://www.iss.net/security_center/static/7215.php http://www.osvdb.org/1960 http://www.securityfocus.com/bid/3384