CVE-2006-7003

2007-02-1223:00:00

mitre

www.cve.org

php

remote file inclusion

fusion polls

arbitrary php code

url parameter

AI Score

7.5

Confidence

High

EPSS

0.005

Percentile

77.6%

JSON

PHP remote file inclusion vulnerability in admin/index.php in Fusion Polls allows remote attackers to execute arbitrary PHP code via a URL in the xtrphome parameter.

References

www.securityfocus.com/archive/1/437127/30/4380/threaded

www.securityfocus.com/archive/1/441493/30/4380/threaded