CVE-2008-4134 Information

Description

PHP remote file inclusion vulnerability in manager/static/view.php in phpRealty 0.03 and earlier and possibly other versions before 0.05 allows remote attackers to execute arbitrary PHP code via a URL in the INC parameter.

Reference

http://php-realty.com/ http://secunia.com/advisories/31874 http://securityreason.com/securityalert/4277 http://www.securityfocus.com/bid/31213 http://www.vupen.com/english/advisories/2008/2611 https://exchange.xforce.ibmcloud.com/vulnerabilities/45181 https://www.exploit-db.com/exploits/6473