CVE-2007-5388 Information

Description

Multiple PHP remote file inclusion vulnerabilities in WebDesktop 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) app parameter to apps/apps.php and the (2) wsk parameter to wsk/wsk.php.

Reference

http://osvdb.org/37881 http://osvdb.org/37882 http://www.securityfocus.com/bid/26030 https://exchange.xforce.ibmcloud.com/vulnerabilities/37060 https://www.exploit-db.com/exploits/4518