CVE-2007-4439 Information

Description

PHP remote file inclusion vulnerability in popup_window.php in Squirrelcart 1.x.x and earlier allows remote attackers to execute arbitrary PHP code via a URL in the site_isp_root parameter probably related to cart.php.

Reference

http://osvdb.org/37701 http://www.securityfocus.com/bid/25382 https://exchange.xforce.ibmcloud.com/vulnerabilities/36112 https://www.exploit-db.com/exploits/4295