CVE-2008-0287 Information

Description

PHP remote file inclusion vulnerability in VisionBurst vcart 3.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the abs_path parameter to (1) index.php and (2) checkout.php.

Reference

http://secunia.com/advisories/28424 http://www.securityfocus.com/bid/27231 https://exchange.xforce.ibmcloud.com/vulnerabilities/39616 https://www.exploit-db.com/exploits/4889