CVE-2010-2137 Information

Description

PHP remote file inclusion vulnerability in _center.php in ProMan 0.1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the page parameter.

Reference

http://packetstormsecurity.org/1002-exploits/proman-rfilfi.txt http://www.exploit-db.com/exploits/11587 https://exchange.xforce.ibmcloud.com/vulnerabilities/56575