CVE-2007-5567 Information

Description

PHP remote file inclusion vulnerability in _lib/fckeditor/upload_config.php in Galmeta Post 0.11 allows remote attackers to execute arbitrary PHP code via a URL in the DDS parameter.

Reference

http://arfis.wordpress.com/2007/09/13/rfi-02-galmeta-post/ http://www.attrition.org/pipermail/vim/2007-October/001836.html http://www.securityfocus.com/bid/26329 https://exchange.xforce.ibmcloud.com/vulnerabilities/37412