CVE-2008-1067 Information

Description

Multiple PHP remote file inclusion vulnerabilities in phpQLAdmin 2.2.7 allow remote attackers to execute arbitrary PHP code via a URL in the _SESSION[path] parameter to (1) ezmlm.php and (2) tools/update_translations.php.

Reference

http://secunia.com/advisories/29076 https://www.exploit-db.com/exploits/5173