CVE-2001-1298 Information

Description

Webodex PHP script 1.0 and earlier allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.

Reference

http://archives.neohapsis.com/archives/bugtraq/2001-10/0012.html http://www.iss.net/security_center/static/7215.php http://www.securityfocus.com/bid/3385