CVE-2007-4101 Information

Description

Multiple PHP remote file inclusion vulnerabilities in Madoa Poll 1.1 allow remote attackers to execute arbitrary PHP code via the Madoa parameter to (1) index.php (2) vote.php and (3) admin.php.

Reference

http://osvdb.org/37262 http://osvdb.org/37263 http://osvdb.org/37264 http://securityreason.com/securityalert/2937 http://www.attrition.org/pipermail/vim/2007-July/001739.html http://www.securityfocus.com/archive/1/475096/100/0/threaded http://www.securityfocus.com/bid/25138