CVE-2005-0897 Information

Description

PHP remote file inclusion vulnerability in catalog.php in E-Store Kit-2 PayPal Edition allows remote attackers to execute arbitrary PHP code by modifying the menu and main parameters to reference a URL on a remote web server that contains the code.

Reference

http://marc.info/?l=bugtraq&m=111186424600509&w=2 http://www.securityfocus.com/bid/12910