CVE-2002-2106 Information

Description

PHP remote file inclusion vulnerability in WikkiTikkiTavi before 0.21 allows remote attackers to execute arbitrary PHP code via the TemplateDir variable as demonstrated using conflict.php.

Reference

http://securitytracker.com/id?1003307 http://sourceforge.net/mailarchive/message.php?msg_id=185752 http://www.securityfocus.com/bid/3946 https://exchange.xforce.ibmcloud.com/vulnerabilities/8001