CVE-2007-1990 Information

Description

PHP remote file inclusion vulnerability in games.php in Sam Crew MyBlog possibly 1.0 through 1.6 allows remote attackers to execute arbitrary PHP code via a URL in the id parameter a different vector than CVE-2007-1968. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Reference

http://osvdb.org/37432 http://www.vupen.com/english/advisories/2007/1302