CVE-2008-6403 Information

Description

PHP remote file inclusion vulnerability in themes/default/include/html/insert.inc.php in OpenRat 0.8-beta4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the tpl_dir parameter.

Reference

http://www.securityfocus.com/bid/31339 https://exchange.xforce.ibmcloud.com/vulnerabilities/45363 https://www.exploit-db.com/exploits/6538