CVE-2002-2200 Information

Description

Benjamin Lefevre Dobermann FORUM 0.5 and earlier allows remote attackers to remotely include and execute malicious PHP files via the \subpath\ variablein (1) entete.php (2) enteteacceuil.php (3) index.php or (4) newtopic.php.

Reference

http://seclists.org/lists/bugtraq/2002/Oct/0397.html http://www.iss.net/security_center/static/10492.php http://www.securityfocus.com/bid/6057